{"url":"http://public2.vulnerablecode.io/api/packages/1050390?format=json","purl":"pkg:deb/debian/pypy3@7.0.0%2Bdfsg-3","type":"deb","namespace":"debian","name":"pypy3","version":"7.0.0+dfsg-3","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"7.3.22+dfsg-1","latest_non_vulnerable_version":"7.3.22+dfsg-1","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6214?format=json","vulnerability_id":"VCID-29cz-9gkc-1bfx","summary":"A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-29651.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-29651.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-29651","reference_id":"","reference_type":"","scores":[{"value":"0.00781","scoring_system":"epss","scoring_elements":"0.73773","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00781","scoring_system":"epss","scoring_elements":"0.7378","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00781","scoring_system":"epss","scoring_elements":"0.73771","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00781","scoring_system":"epss","scoring_elements":"0.73747","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00781","scoring_system":"epss","scoring_elements":"0.73647","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00781","scoring_system":"epss","scoring_elements":"0.73738","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00781","scoring_system":"epss","scoring_elements":"0.73695","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00781","scoring_system":"epss","scoring_elements":"0.73704","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00781","scoring_system":"epss","scoring_elements":"0.73722","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00781","scoring_system":"epss","scoring_elements":"0.73701","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00781","scoring_system":"epss","scoring_elements":"0.73688","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00781","scoring_system":"epss","scoring_elements":"0.73653","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00781","scoring_system":"epss","scoring_elements":"0.7368","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00781","scoring_system":"epss","scoring_elements":"0.73656","published_at":"2026-04-02T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-29651"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29651","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29651"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/advisories/GHSA-hj5v-574p-mj7c","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-hj5v-574p-mj7c"},{"reference_url":"https://github.com/pypa/advisory-database/tree/main/vulns/py/PYSEC-2020-92.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/pypa/advisory-database/tree/main/vulns/py/PYSEC-2020-92.yaml"},{"reference_url":"https://github.com/pytest-dev/py","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/pytest-dev/py"},{"reference_url":"https://github.com/pytest-dev/py/issues/256","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/pytest-dev/py/issues/256"},{"reference_url":"https://github.com/pytest-dev/py/pull/257","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/pytest-dev/py/pull/257"},{"reference_url":"https://github.com/pytest-dev/py/pull/257/commits/4a9017dc6199d2a564b6e4b0aa39d6d8870e4144","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/pytest-dev/py/pull/257/commits/4a9017dc6199d2a564b6e4b0aa39d6d8870e4144"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2024/11/msg00024.html","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.debian.org/debian-lts-announce/2024/11/msg00024.html"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AYWNYEV3FGDHPIHX4DDUDMFZ6NLCQRC4","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AYWNYEV3FGDHPIHX4DDUDMFZ6NLCQRC4"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHDTINIBJZ67T3W74QTBIY5LPKAXEOGR","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHDTINIBJZ67T3W74QTBIY5LPKAXEOGR"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AYWNYEV3FGDHPIHX4DDUDMFZ6NLCQRC4","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AYWNYEV3FGDHPIHX4DDUDMFZ6NLCQRC4"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AYWNYEV3FGDHPIHX4DDUDMFZ6NLCQRC4/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AYWNYEV3FGDHPIHX4DDUDMFZ6NLCQRC4/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CHDTINIBJZ67T3W74QTBIY5LPKAXEOGR","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CHDTINIBJZ67T3W74QTBIY5LPKAXEOGR"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CHDTINIBJZ67T3W74QTBIY5LPKAXEOGR/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CHDTINIBJZ67T3W74QTBIY5LPKAXEOGR/"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2020-29651","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2020-29651"},{"reference_url":"https://www.oracle.com/security-alerts/cpujul2022.html","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.oracle.com/security-alerts/cpujul2022.html"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1906451","reference_id":"1906451","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1906451"},{"reference_url":"https://security.archlinux.org/AVG-1338","reference_id":"AVG-1338","reference_type":"","scores":[{"value":"Low","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1338"},{"reference_url":"https://usn.ubuntu.com/5138-1/","reference_id":"USN-5138-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5138-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/994362?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3"}],"aliases":["CVE-2020-29651","GHSA-hj5v-574p-mj7c","PYSEC-2020-92"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-29cz-9gkc-1bfx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/78162?format=json","vulnerability_id":"VCID-2czu-wy37-qugf","summary":"python: constant-time-defeating optimisations issue in the compare_digest function in Lib/hmac.p","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-48566.json","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-48566.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-48566","reference_id":"","reference_type":"","scores":[{"value":"0.0009","scoring_system":"epss","scoring_elements":"0.25276","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00098","scoring_system":"epss","scoring_elements":"0.2714","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00098","scoring_system":"epss","scoring_elements":"0.26967","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00098","scoring_system":"epss","scoring_elements":"0.26931","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00098","scoring_system":"epss","scoring_elements":"0.26883","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00098","scoring_system":"epss","scoring_elements":"0.26875","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00098","scoring_system":"epss","scoring_elements":"0.26811","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00098","scoring_system":"epss","scoring_elements":"0.27176","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00098","scoring_system":"epss","scoring_elements":"0.26968","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00098","scoring_system":"epss","scoring_elements":"0.27036","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00098","scoring_system":"epss","scoring_elements":"0.27081","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00098","scoring_system":"epss","scoring_elements":"0.27085","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00098","scoring_system":"epss","scoring_elements":"0.2704","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00098","scoring_system":"epss","scoring_elements":"0.26984","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00098","scoring_system":"epss","scoring_elements":"0.26992","published_at":"2026-04-16T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-48566"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48566","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48566"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2238753","reference_id":"2238753","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2238753"},{"reference_url":"https://bugs.python.org/issue40791","reference_id":"issue40791","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T14:08:27Z/"}],"url":"https://bugs.python.org/issue40791"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/10/msg00017.html","reference_id":"msg00017.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T14:08:27Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/10/msg00017.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html","reference_id":"msg00022.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T14:08:27Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20231006-0013/","reference_id":"ntap-20231006-0013","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T14:08:27Z/"}],"url":"https://security.netapp.com/advisory/ntap-20231006-0013/"},{"reference_url":"https://usn.ubuntu.com/6400-1/","reference_id":"USN-6400-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6400-1/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"},{"reference_url":"https://usn.ubuntu.com/7180-1/","reference_id":"USN-7180-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7180-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/995139?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-29cz-9gkc-1bfx"},{"vulnerability":"VCID-2shb-2cvn-dyd2"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4gsg-5e6s-63g4"},{"vulnerability":"VCID-4z89-3tfk-pyge"},{"vulnerability":"VCID-7ka5-7jrn-dber"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-dexx-3ssz-nqfg"},{"vulnerability":"VCID-e6rs-jwvu-jycd"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-h7z2-vc14-nfhq"},{"vulnerability":"VCID-js5p-py72-2kga"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qqh6-evfk-1fgy"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-tbuw-2msj-tqd9"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-vpwj-d49q-1uh8"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2"}],"aliases":["CVE-2022-48566"],"risk_score":2.6,"exploitability":"0.5","weighted_severity":"5.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2czu-wy37-qugf"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/36443?format=json","vulnerability_id":"VCID-2j3t-a3r6-vfg7","summary":"Multiple vulnerabilities have been found in Python, the worst of\n    which might allow attackers to access sensitive information.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3426.json","reference_id":"","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3426.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3426","reference_id":"","reference_type":"","scores":[{"value":"0.0008","scoring_system":"epss","scoring_elements":"0.23679","published_at":"2026-04-02T12:55:00Z"},{"value":"0.0008","scoring_system":"epss","scoring_elements":"0.23519","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23894","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23548","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23669","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23709","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23721","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.2384","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.2387","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23859","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23913","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23957","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.2394","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.24042","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23827","published_at":"2026-04-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3426"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3426","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3426"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1935913","reference_id":"1935913","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1935913"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/25HVHLBGO2KNPXJ3G426QEYSSCECJDU5/","reference_id":"25HVHLBGO2KNPXJ3G426QEYSSCECJDU5","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/25HVHLBGO2KNPXJ3G426QEYSSCECJDU5/"},{"reference_url":"https://security.archlinux.org/AVG-1675","reference_id":"AVG-1675","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1675"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BF2K7HEWADHN6P52R3QLIOX27U3DJ4HI/","reference_id":"BF2K7HEWADHN6P52R3QLIOX27U3DJ4HI","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BF2K7HEWADHN6P52R3QLIOX27U3DJ4HI/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DQYPUKLLBOZMKFPO7RD7CENTXHUUEUV7/","reference_id":"DQYPUKLLBOZMKFPO7RD7CENTXHUUEUV7","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DQYPUKLLBOZMKFPO7RD7CENTXHUUEUV7/"},{"reference_url":"https://security.gentoo.org/glsa/202104-04","reference_id":"GLSA-202104-04","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/"}],"url":"https://security.gentoo.org/glsa/202104-04"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LM5V4VPLBHBEASSAROYPSHXGXGGPHNOE/","reference_id":"LM5V4VPLBHBEASSAROYPSHXGXGGPHNOE","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LM5V4VPLBHBEASSAROYPSHXGXGGPHNOE/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2021/04/msg00005.html","reference_id":"msg00005.html","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2021/04/msg00005.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html","reference_id":"msg00039.html","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N6VXJZSZ6N64AILJX4CTMACYGQGHHD5C/","reference_id":"N6VXJZSZ6N64AILJX4CTMACYGQGHHD5C","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N6VXJZSZ6N64AILJX4CTMACYGQGHHD5C/"},{"reference_url":"https://security.netapp.com/advisory/ntap-20210629-0003/","reference_id":"ntap-20210629-0003","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/"}],"url":"https://security.netapp.com/advisory/ntap-20210629-0003/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QNGAFMPIYIVJ47FCF2NK2PIX22HUG35B/","reference_id":"QNGAFMPIYIVJ47FCF2NK2PIX22HUG35B","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QNGAFMPIYIVJ47FCF2NK2PIX22HUG35B/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4160","reference_id":"RHSA-2021:4160","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4160"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4162","reference_id":"RHSA-2021:4162","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4162"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4399","reference_id":"RHSA-2021:4399","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4399"},{"reference_url":"https://usn.ubuntu.com/5342-1/","reference_id":"USN-5342-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5342-1/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"},{"reference_url":"https://usn.ubuntu.com/USN-5342-3/","reference_id":"USN-USN-5342-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/USN-5342-3/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VPX7Y5GQDNB4FJTREWONGC4ZSVH7TGHF/","reference_id":"VPX7Y5GQDNB4FJTREWONGC4ZSVH7TGHF","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VPX7Y5GQDNB4FJTREWONGC4ZSVH7TGHF/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/995139?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-29cz-9gkc-1bfx"},{"vulnerability":"VCID-2shb-2cvn-dyd2"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4gsg-5e6s-63g4"},{"vulnerability":"VCID-4z89-3tfk-pyge"},{"vulnerability":"VCID-7ka5-7jrn-dber"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-dexx-3ssz-nqfg"},{"vulnerability":"VCID-e6rs-jwvu-jycd"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-h7z2-vc14-nfhq"},{"vulnerability":"VCID-js5p-py72-2kga"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qqh6-evfk-1fgy"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-tbuw-2msj-tqd9"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-vpwj-d49q-1uh8"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2"}],"aliases":["CVE-2021-3426"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2j3t-a3r6-vfg7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42640?format=json","vulnerability_id":"VCID-2shb-2cvn-dyd2","summary":"Multiple vulberabilities have been discovered in Python and PyPy3, the worst of which can lead to privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24329.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24329.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-24329","reference_id":"","reference_type":"","scores":[{"value":"0.01081","scoring_system":"epss","scoring_elements":"0.77879","published_at":"2026-04-21T12:55:00Z"},{"value":"0.01081","scoring_system":"epss","scoring_elements":"0.77911","published_at":"2026-04-24T12:55:00Z"},{"value":"0.01445","scoring_system":"epss","scoring_elements":"0.80778","published_at":"2026-04-16T12:55:00Z"},{"value":"0.01445","scoring_system":"epss","scoring_elements":"0.80838","published_at":"2026-05-05T12:55:00Z"},{"value":"0.01445","scoring_system":"epss","scoring_elements":"0.80822","published_at":"2026-04-29T12:55:00Z"},{"value":"0.01445","scoring_system":"epss","scoring_elements":"0.80808","published_at":"2026-04-26T12:55:00Z"},{"value":"0.01445","scoring_system":"epss","scoring_elements":"0.8078","published_at":"2026-04-18T12:55:00Z"},{"value":"0.01445","scoring_system":"epss","scoring_elements":"0.80742","published_at":"2026-04-13T12:55:00Z"},{"value":"0.01445","scoring_system":"epss","scoring_elements":"0.8075","published_at":"2026-04-12T12:55:00Z"},{"value":"0.0159","scoring_system":"epss","scoring_elements":"0.81581","published_at":"2026-04-02T12:55:00Z"},{"value":"0.0159","scoring_system":"epss","scoring_elements":"0.81627","published_at":"2026-04-08T12:55:00Z"},{"value":"0.0159","scoring_system":"epss","scoring_elements":"0.816","published_at":"2026-04-07T12:55:00Z"},{"value":"0.0159","scoring_system":"epss","scoring_elements":"0.81653","published_at":"2026-04-11T12:55:00Z"},{"value":"0.0159","scoring_system":"epss","scoring_elements":"0.81602","published_at":"2026-04-04T12:55:00Z"},{"value":"0.0159","scoring_system":"epss","scoring_elements":"0.81633","published_at":"2026-04-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-24329"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24329","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24329"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/issues/102153","reference_id":"102153","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://github.com/python/cpython/issues/102153"},{"reference_url":"https://www.kb.cert.org/vuls/id/127587","reference_id":"127587","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://www.kb.cert.org/vuls/id/127587"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2173917","reference_id":"2173917","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2173917"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6PEVICI7YNGGMSL3UCMWGE66QFLATH72/","reference_id":"6PEVICI7YNGGMSL3UCMWGE66QFLATH72","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6PEVICI7YNGGMSL3UCMWGE66QFLATH72/"},{"reference_url":"https://github.com/python/cpython/pull/99421","reference_id":"99421","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://github.com/python/cpython/pull/99421"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DSL6NSOAXWBJJ67XPLSSC74MNKZF3BBO/","reference_id":"DSL6NSOAXWBJJ67XPLSSC74MNKZF3BBO","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DSL6NSOAXWBJJ67XPLSSC74MNKZF3BBO/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EM2XLZSTXG44TMFXF4E6VTGKR2MQCW3G/","reference_id":"EM2XLZSTXG44TMFXF4E6VTGKR2MQCW3G","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EM2XLZSTXG44TMFXF4E6VTGKR2MQCW3G/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F2NY75GFDZ5T6YPN44D3VMFT5SUVTOTG/","reference_id":"F2NY75GFDZ5T6YPN44D3VMFT5SUVTOTG","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F2NY75GFDZ5T6YPN44D3VMFT5SUVTOTG/"},{"reference_url":"https://security.gentoo.org/glsa/202405-01","reference_id":"GLSA-202405-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202405-01"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GR5US3BYILYJ4SKBV6YBNPRUBAL5P2CN/","reference_id":"GR5US3BYILYJ4SKBV6YBNPRUBAL5P2CN","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GR5US3BYILYJ4SKBV6YBNPRUBAL5P2CN/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/H23OSKC6UG6IWOQAUPW74YUHWRWVXJP7/","reference_id":"H23OSKC6UG6IWOQAUPW74YUHWRWVXJP7","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/H23OSKC6UG6IWOQAUPW74YUHWRWVXJP7/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JZTLGV2HYFF4AMYJL25VDIGAIHCU7UPA/","reference_id":"JZTLGV2HYFF4AMYJL25VDIGAIHCU7UPA","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JZTLGV2HYFF4AMYJL25VDIGAIHCU7UPA/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LWC4WGXER5P6Q75RFGL7QUTPP3N5JR7T/","reference_id":"LWC4WGXER5P6Q75RFGL7QUTPP3N5JR7T","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LWC4WGXER5P6Q75RFGL7QUTPP3N5JR7T/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html","reference_id":"msg00022.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MZEHSXSCMA4WWQKXT6QV7AAR6SWNZ2VP/","reference_id":"MZEHSXSCMA4WWQKXT6QV7AAR6SWNZ2VP","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MZEHSXSCMA4WWQKXT6QV7AAR6SWNZ2VP/"},{"reference_url":"https://security.netapp.com/advisory/ntap-20230324-0004/","reference_id":"ntap-20230324-0004","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://security.netapp.com/advisory/ntap-20230324-0004/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O5SP4RT3RRS434ZS2HQKQJ3VZW7YPKYR/","reference_id":"O5SP4RT3RRS434ZS2HQKQJ3VZW7YPKYR","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O5SP4RT3RRS434ZS2HQKQJ3VZW7YPKYR/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OHHJHJRLEF3TDT2K3676CAUVRDD4CCMR/","reference_id":"OHHJHJRLEF3TDT2K3676CAUVRDD4CCMR","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OHHJHJRLEF3TDT2K3676CAUVRDD4CCMR/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PEUN6T22UJFXR7J5F6UUHCXXPKJ2DVHI/","reference_id":"PEUN6T22UJFXR7J5F6UUHCXXPKJ2DVHI","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PEUN6T22UJFXR7J5F6UUHCXXPKJ2DVHI/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PURM5CFDABEWAIWZFD2MQ7ZJGCPYSQ44/","reference_id":"PURM5CFDABEWAIWZFD2MQ7ZJGCPYSQ44","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PURM5CFDABEWAIWZFD2MQ7ZJGCPYSQ44/"},{"reference_url":"https://pointernull.com/security/python-url-parse-problem.html","reference_id":"python-url-parse-problem.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://pointernull.com/security/python-url-parse-problem.html"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Q3J5N24ECS4B6MJDRO6UAYU6GPLYBDCL/","reference_id":"Q3J5N24ECS4B6MJDRO6UAYU6GPLYBDCL","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Q3J5N24ECS4B6MJDRO6UAYU6GPLYBDCL/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QRQHN7RWJQJHYP6E5EKESOYP5VDSHZG4/","reference_id":"QRQHN7RWJQJHYP6E5EKESOYP5VDSHZG4","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QRQHN7RWJQJHYP6E5EKESOYP5VDSHZG4/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RA2MBEEES6L46OD64OBSVUUMGKNGMOWW/","reference_id":"RA2MBEEES6L46OD64OBSVUUMGKNGMOWW","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RA2MBEEES6L46OD64OBSVUUMGKNGMOWW/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3550","reference_id":"RHSA-2023:3550","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3550"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3555","reference_id":"RHSA-2023:3555","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3555"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3556","reference_id":"RHSA-2023:3556","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3556"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3585","reference_id":"RHSA-2023:3585","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3585"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3591","reference_id":"RHSA-2023:3591","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3591"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3594","reference_id":"RHSA-2023:3594","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3594"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3595","reference_id":"RHSA-2023:3595","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3595"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3776","reference_id":"RHSA-2023:3776","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3776"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3777","reference_id":"RHSA-2023:3777","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3777"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3780","reference_id":"RHSA-2023:3780","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3780"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3781","reference_id":"RHSA-2023:3781","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3781"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3796","reference_id":"RHSA-2023:3796","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3796"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3810","reference_id":"RHSA-2023:3810","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3810"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3811","reference_id":"RHSA-2023:3811","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3811"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3931","reference_id":"RHSA-2023:3931","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3931"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3932","reference_id":"RHSA-2023:3932","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3932"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3934","reference_id":"RHSA-2023:3934","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3934"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3935","reference_id":"RHSA-2023:3935","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3935"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3936","reference_id":"RHSA-2023:3936","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3936"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4004","reference_id":"RHSA-2023:4004","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4004"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4008","reference_id":"RHSA-2023:4008","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4008"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4032","reference_id":"RHSA-2023:4032","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4032"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4038","reference_id":"RHSA-2023:4038","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4038"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4203","reference_id":"RHSA-2023:4203","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4203"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:4282","reference_id":"RHSA-2023:4282","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:4282"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6793","reference_id":"RHSA-2023:6793","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6793"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T4IDB5OAR5Y4UK3HLMZBW4WEL2B7YFMJ/","reference_id":"T4IDB5OAR5Y4UK3HLMZBW4WEL2B7YFMJ","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T4IDB5OAR5Y4UK3HLMZBW4WEL2B7YFMJ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TZH26JGNZ5XYPZ5SAU3NKSBSPRE5OHTG/","reference_id":"TZH26JGNZ5XYPZ5SAU3NKSBSPRE5OHTG","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TZH26JGNZ5XYPZ5SAU3NKSBSPRE5OHTG/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U2MZOJYGFCB5PPT6AKMAU72N7QOYWLBP/","reference_id":"U2MZOJYGFCB5PPT6AKMAU72N7QOYWLBP","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U2MZOJYGFCB5PPT6AKMAU72N7QOYWLBP/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UONZWLB4QVLQIY5CPDLEUEKH6WX4VQMC/","reference_id":"UONZWLB4QVLQIY5CPDLEUEKH6WX4VQMC","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UONZWLB4QVLQIY5CPDLEUEKH6WX4VQMC/"},{"reference_url":"https://usn.ubuntu.com/5888-1/","reference_id":"USN-5888-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5888-1/"},{"reference_url":"https://usn.ubuntu.com/5960-1/","reference_id":"USN-5960-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5960-1/"},{"reference_url":"https://usn.ubuntu.com/6139-1/","reference_id":"USN-6139-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6139-1/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"},{"reference_url":"https://usn.ubuntu.com/7180-1/","reference_id":"USN-7180-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7180-1/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WTOAUJNDWZDRWVSXJ354AYZYKRMT56HU/","reference_id":"WTOAUJNDWZDRWVSXJ354AYZYKRMT56HU","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WTOAUJNDWZDRWVSXJ354AYZYKRMT56HU/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/994362?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3"}],"aliases":["CVE-2023-24329"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2shb-2cvn-dyd2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/38870?format=json","vulnerability_id":"VCID-4gsg-5e6s-63g4","summary":"Multiple vulnerabilities have been found in Python and PyPy, the worst of which could result in arbitrary code execution.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-28861.json","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-28861.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-28861","reference_id":"","reference_type":"","scores":[{"value":"0.01395","scoring_system":"epss","scoring_elements":"0.80333","published_at":"2026-04-01T12:55:00Z"},{"value":"0.01395","scoring_system":"epss","scoring_elements":"0.8034","published_at":"2026-04-02T12:55:00Z"},{"value":"0.01395","scoring_system":"epss","scoring_elements":"0.80349","published_at":"2026-04-07T12:55:00Z"},{"value":"0.01395","scoring_system":"epss","scoring_elements":"0.80392","published_at":"2026-04-12T12:55:00Z"},{"value":"0.01395","scoring_system":"epss","scoring_elements":"0.80407","published_at":"2026-04-11T12:55:00Z"},{"value":"0.01395","scoring_system":"epss","scoring_elements":"0.80388","published_at":"2026-04-09T12:55:00Z"},{"value":"0.01395","scoring_system":"epss","scoring_elements":"0.80378","published_at":"2026-04-08T12:55:00Z"},{"value":"0.01395","scoring_system":"epss","scoring_elements":"0.8036","published_at":"2026-04-04T12:55:00Z"},{"value":"0.01395","scoring_system":"epss","scoring_elements":"0.80483","published_at":"2026-05-05T12:55:00Z"},{"value":"0.01395","scoring_system":"epss","scoring_elements":"0.80468","published_at":"2026-04-29T12:55:00Z"},{"value":"0.01395","scoring_system":"epss","scoring_elements":"0.80451","published_at":"2026-04-26T12:55:00Z"},{"value":"0.01395","scoring_system":"epss","scoring_elements":"0.80445","published_at":"2026-04-24T12:55:00Z"},{"value":"0.01395","scoring_system":"epss","scoring_elements":"0.80419","published_at":"2026-04-21T12:55:00Z"},{"value":"0.01395","scoring_system":"epss","scoring_elements":"0.80415","published_at":"2026-04-18T12:55:00Z"},{"value":"0.01395","scoring_system":"epss","scoring_elements":"0.80414","published_at":"2026-04-16T12:55:00Z"},{"value":"0.01395","scoring_system":"epss","scoring_elements":"0.80385","published_at":"2026-04-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-28861"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28861","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28861"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2120642","reference_id":"2120642","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2120642"},{"reference_url":"https://github.com/python/cpython/pull/24848","reference_id":"24848","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/"}],"url":"https://github.com/python/cpython/pull/24848"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2TRINJE3INWDVIHIABW4L2NP3RUSK7BJ/","reference_id":"2TRINJE3INWDVIHIABW4L2NP3RUSK7BJ","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2TRINJE3INWDVIHIABW4L2NP3RUSK7BJ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5LTSPFIULY2GZJN3QYNFVM4JSU6H4D6J/","reference_id":"5LTSPFIULY2GZJN3QYNFVM4JSU6H4D6J","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5LTSPFIULY2GZJN3QYNFVM4JSU6H4D6J/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5OABQ5CMPQETJLFHROAXDIDXCMDTNVYG/","reference_id":"5OABQ5CMPQETJLFHROAXDIDXCMDTNVYG","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5OABQ5CMPQETJLFHROAXDIDXCMDTNVYG/"},{"reference_url":"https://github.com/python/cpython/pull/93879","reference_id":"93879","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/"}],"url":"https://github.com/python/cpython/pull/93879"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DISZAFSIQ7IAPAEQTC7G2Z5QUA2V2PSW/","reference_id":"DISZAFSIQ7IAPAEQTC7G2Z5QUA2V2PSW","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DISZAFSIQ7IAPAEQTC7G2Z5QUA2V2PSW/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HPX4XHT2FGVQYLY2STT2MRVENILNZTTU/","reference_id":"HPX4XHT2FGVQYLY2STT2MRVENILNZTTU","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HPX4XHT2FGVQYLY2STT2MRVENILNZTTU/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I3MQT5ZE3QH5PVDJMERTBOCILHK35CBE/","reference_id":"I3MQT5ZE3QH5PVDJMERTBOCILHK35CBE","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I3MQT5ZE3QH5PVDJMERTBOCILHK35CBE/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IFGV7P2PYFBMK32OKHCAC2ZPJQV5AUDF/","reference_id":"IFGV7P2PYFBMK32OKHCAC2ZPJQV5AUDF","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IFGV7P2PYFBMK32OKHCAC2ZPJQV5AUDF/"},{"reference_url":"https://bugs.python.org/issue43223","reference_id":"issue43223","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/"}],"url":"https://bugs.python.org/issue43223"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KRGKPYA5YHIXQAMRIXO5DSCX7D4UUW4Q/","reference_id":"KRGKPYA5YHIXQAMRIXO5DSCX7D4UUW4Q","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KRGKPYA5YHIXQAMRIXO5DSCX7D4UUW4Q/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OKYE2DOI2X7WZXAWTQJZAXYIWM37HDCY/","reference_id":"OKYE2DOI2X7WZXAWTQJZAXYIWM37HDCY","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OKYE2DOI2X7WZXAWTQJZAXYIWM37HDCY/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QLE5INSVJUZJGY5OJXV6JREXWD7UDHYN/","reference_id":"QLE5INSVJUZJGY5OJXV6JREXWD7UDHYN","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QLE5INSVJUZJGY5OJXV6JREXWD7UDHYN/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:6766","reference_id":"RHSA-2022:6766","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:6766"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:8353","reference_id":"RHSA-2022:8353","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:8353"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0833","reference_id":"RHSA-2023:0833","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0833"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2763","reference_id":"RHSA-2023:2763","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2763"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2764","reference_id":"RHSA-2023:2764","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2764"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/S7G66SRWUM36ENQ3X6LAIG7HAB27D4XJ/","reference_id":"S7G66SRWUM36ENQ3X6LAIG7HAB27D4XJ","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/S7G66SRWUM36ENQ3X6LAIG7HAB27D4XJ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TZEPOPUFC42KXXSLFPZ47ZZRGPOR7SQE/","reference_id":"TZEPOPUFC42KXXSLFPZ47ZZRGPOR7SQE","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TZEPOPUFC42KXXSLFPZ47ZZRGPOR7SQE/"},{"reference_url":"https://usn.ubuntu.com/5629-1/","reference_id":"USN-5629-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5629-1/"},{"reference_url":"https://usn.ubuntu.com/5888-1/","reference_id":"USN-5888-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5888-1/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WXF6MQ74HVIDDSR5AE2UDR24I6D4FEPC/","reference_id":"WXF6MQ74HVIDDSR5AE2UDR24I6D4FEPC","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WXF6MQ74HVIDDSR5AE2UDR24I6D4FEPC/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X46T4EFTIBXZRYTGASBDEZGYJINH2OWV/","reference_id":"X46T4EFTIBXZRYTGASBDEZGYJINH2OWV","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X46T4EFTIBXZRYTGASBDEZGYJINH2OWV/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/994362?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3"}],"aliases":["CVE-2021-28861"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4gsg-5e6s-63g4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/78163?format=json","vulnerability_id":"VCID-4q79-666d-rygx","summary":"python: XML External Entity in XML processing plistlib module","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-48565.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-48565.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-48565","reference_id":"","reference_type":"","scores":[{"value":"0.07274","scoring_system":"epss","scoring_elements":"0.91625","published_at":"2026-04-02T12:55:00Z"},{"value":"0.07274","scoring_system":"epss","scoring_elements":"0.91688","published_at":"2026-05-05T12:55:00Z"},{"value":"0.07274","scoring_system":"epss","scoring_elements":"0.91663","published_at":"2026-04-12T12:55:00Z"},{"value":"0.07274","scoring_system":"epss","scoring_elements":"0.9166","published_at":"2026-04-13T12:55:00Z"},{"value":"0.07274","scoring_system":"epss","scoring_elements":"0.91681","published_at":"2026-04-16T12:55:00Z"},{"value":"0.07274","scoring_system":"epss","scoring_elements":"0.91673","published_at":"2026-04-18T12:55:00Z"},{"value":"0.07274","scoring_system":"epss","scoring_elements":"0.91674","published_at":"2026-04-21T12:55:00Z"},{"value":"0.07274","scoring_system":"epss","scoring_elements":"0.9168","published_at":"2026-04-24T12:55:00Z"},{"value":"0.07274","scoring_system":"epss","scoring_elements":"0.91678","published_at":"2026-04-26T12:55:00Z"},{"value":"0.07274","scoring_system":"epss","scoring_elements":"0.91676","published_at":"2026-04-29T12:55:00Z"},{"value":"0.07274","scoring_system":"epss","scoring_elements":"0.91631","published_at":"2026-04-04T12:55:00Z"},{"value":"0.07274","scoring_system":"epss","scoring_elements":"0.91639","published_at":"2026-04-07T12:55:00Z"},{"value":"0.07274","scoring_system":"epss","scoring_elements":"0.91651","published_at":"2026-04-08T12:55:00Z"},{"value":"0.07274","scoring_system":"epss","scoring_elements":"0.91657","published_at":"2026-04-09T12:55:00Z"},{"value":"0.07274","scoring_system":"epss","scoring_elements":"0.91661","published_at":"2026-04-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-48565"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48565","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48565"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2240059","reference_id":"2240059","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2240059"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AFHYAGWBFBNUGWU6XWKBHTCV5NH77MB7/","reference_id":"AFHYAGWBFBNUGWU6XWKBHTCV5NH77MB7","reference_type":"","scores":[{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-03T17:41:12Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AFHYAGWBFBNUGWU6XWKBHTCV5NH77MB7/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BAYWJD576JUKLHCWKDLMJSUGTRDKPF3M/","reference_id":"BAYWJD576JUKLHCWKDLMJSUGTRDKPF3M","reference_type":"","scores":[{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-03T17:41:12Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BAYWJD576JUKLHCWKDLMJSUGTRDKPF3M/"},{"reference_url":"https://bugs.python.org/issue42051","reference_id":"issue42051","reference_type":"","scores":[{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-03T17:41:12Z/"}],"url":"https://bugs.python.org/issue42051"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KZRZRJHWLZ7MOJNPQBWGJVXMVYDC5BRA/","reference_id":"KZRZRJHWLZ7MOJNPQBWGJVXMVYDC5BRA","reference_type":"","scores":[{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-03T17:41:12Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KZRZRJHWLZ7MOJNPQBWGJVXMVYDC5BRA/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/10/msg00017.html","reference_id":"msg00017.html","reference_type":"","scores":[{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-03T17:41:12Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/10/msg00017.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html","reference_id":"msg00022.html","reference_type":"","scores":[{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-03T17:41:12Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20231006-0007/","reference_id":"ntap-20231006-0007","reference_type":"","scores":[{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-03T17:41:12Z/"}],"url":"https://security.netapp.com/advisory/ntap-20231006-0007/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2987","reference_id":"RHSA-2024:2987","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2987"},{"reference_url":"https://usn.ubuntu.com/6354-1/","reference_id":"USN-6354-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6354-1/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"},{"reference_url":"https://usn.ubuntu.com/7180-1/","reference_id":"USN-7180-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7180-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/995139?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-29cz-9gkc-1bfx"},{"vulnerability":"VCID-2shb-2cvn-dyd2"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4gsg-5e6s-63g4"},{"vulnerability":"VCID-4z89-3tfk-pyge"},{"vulnerability":"VCID-7ka5-7jrn-dber"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-dexx-3ssz-nqfg"},{"vulnerability":"VCID-e6rs-jwvu-jycd"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-h7z2-vc14-nfhq"},{"vulnerability":"VCID-js5p-py72-2kga"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qqh6-evfk-1fgy"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-tbuw-2msj-tqd9"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-vpwj-d49q-1uh8"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2"}],"aliases":["CVE-2022-48565"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4q79-666d-rygx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42641?format=json","vulnerability_id":"VCID-4z89-3tfk-pyge","summary":"Multiple vulberabilities have been discovered in Python and PyPy3, the worst of which can lead to privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-40217.json","reference_id":"","reference_type":"","scores":[{"value":"8.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-40217.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-40217","reference_id":"","reference_type":"","scores":[{"value":"0.00581","scoring_system":"epss","scoring_elements":"0.68983","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00581","scoring_system":"epss","scoring_elements":"0.68929","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00581","scoring_system":"epss","scoring_elements":"0.68952","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00581","scoring_system":"epss","scoring_elements":"0.68938","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00581","scoring_system":"epss","scoring_elements":"0.68909","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00581","scoring_system":"epss","scoring_elements":"0.6895","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00581","scoring_system":"epss","scoring_elements":"0.6896","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00581","scoring_system":"epss","scoring_elements":"0.6894","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00581","scoring_system":"epss","scoring_elements":"0.68991","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00581","scoring_system":"epss","scoring_elements":"0.68997","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00581","scoring_system":"epss","scoring_elements":"0.69003","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00597","scoring_system":"epss","scoring_elements":"0.69341","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00597","scoring_system":"epss","scoring_elements":"0.69324","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00597","scoring_system":"epss","scoring_elements":"0.69371","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00597","scoring_system":"epss","scoring_elements":"0.69321","published_at":"2026-04-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-40217"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40217","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40217"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2235789","reference_id":"2235789","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2235789"},{"reference_url":"https://security.gentoo.org/glsa/202405-01","reference_id":"GLSA-202405-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202405-01"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/10/msg00017.html","reference_id":"msg00017.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-02T16:31:39Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/10/msg00017.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html","reference_id":"msg00022.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-02T16:31:39Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20231006-0014/","reference_id":"ntap-20231006-0014","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-02T16:31:39Z/"}],"url":"https://security.netapp.com/advisory/ntap-20231006-0014/"},{"reference_url":"https://mail.python.org/archives/list/security-announce%40python.org/thread/PEPLII27KYHLF4AK3ZQGKYNCRERG4YXY/","reference_id":"PEPLII27KYHLF4AK3ZQGKYNCRERG4YXY","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-02T16:31:39Z/"}],"url":"https://mail.python.org/archives/list/security-announce%40python.org/thread/PEPLII27KYHLF4AK3ZQGKYNCRERG4YXY/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5456","reference_id":"RHSA-2023:5456","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5456"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5462","reference_id":"RHSA-2023:5462","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5462"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5463","reference_id":"RHSA-2023:5463","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5463"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5472","reference_id":"RHSA-2023:5472","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5472"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5528","reference_id":"RHSA-2023:5528","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5528"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5531","reference_id":"RHSA-2023:5531","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5531"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5990","reference_id":"RHSA-2023:5990","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5990"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5991","reference_id":"RHSA-2023:5991","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5991"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5992","reference_id":"RHSA-2023:5992","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5992"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5993","reference_id":"RHSA-2023:5993","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5993"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5994","reference_id":"RHSA-2023:5994","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5994"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5995","reference_id":"RHSA-2023:5995","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5995"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5996","reference_id":"RHSA-2023:5996","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5996"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5997","reference_id":"RHSA-2023:5997","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5997"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:5998","reference_id":"RHSA-2023:5998","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:5998"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6068","reference_id":"RHSA-2023:6068","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6068"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6069","reference_id":"RHSA-2023:6069","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6069"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6290","reference_id":"RHSA-2023:6290","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6290"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6793","reference_id":"RHSA-2023:6793","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6793"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6823","reference_id":"RHSA-2023:6823","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6823"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6885","reference_id":"RHSA-2023:6885","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6885"},{"reference_url":"https://www.python.org/dev/security/","reference_id":"security","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-02T16:31:39Z/"}],"url":"https://www.python.org/dev/security/"},{"reference_url":"https://usn.ubuntu.com/6513-1/","reference_id":"USN-6513-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6513-1/"},{"reference_url":"https://usn.ubuntu.com/6513-2/","reference_id":"USN-6513-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6513-2/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"},{"reference_url":"https://usn.ubuntu.com/7180-1/","reference_id":"USN-7180-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7180-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/994362?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3"}],"aliases":["CVE-2023-40217"],"risk_score":3.9,"exploitability":"0.5","weighted_severity":"7.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4z89-3tfk-pyge"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42639?format=json","vulnerability_id":"VCID-7ka5-7jrn-dber","summary":"Multiple vulberabilities have been discovered in Python and PyPy3, the worst of which can lead to privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6597.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6597.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-6597","reference_id":"","reference_type":"","scores":[{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23141","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.22719","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.22818","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.22974","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23083","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23121","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23101","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23048","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23185","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.22823","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.22828","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.22994","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23033","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23041","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23028","published_at":"2026-04-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-6597"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6597","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6597"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/commit/02a9259c717738dfe6b463c44d7e17f2b6d2cb3a","reference_id":"02a9259c717738dfe6b463c44d7e17f2b6d2cb3a","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/"}],"url":"https://github.com/python/cpython/commit/02a9259c717738dfe6b463c44d7e17f2b6d2cb3a"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1070135","reference_id":"1070135","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1070135"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2276518","reference_id":"2276518","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2276518"},{"reference_url":"http://www.openwall.com/lists/oss-security/2024/03/20/5","reference_id":"5","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/"}],"url":"http://www.openwall.com/lists/oss-security/2024/03/20/5"},{"reference_url":"https://github.com/python/cpython/commit/5585334d772b253a01a6730e8202ffb1607c3d25","reference_id":"5585334d772b253a01a6730e8202ffb1607c3d25","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/"}],"url":"https://github.com/python/cpython/commit/5585334d772b253a01a6730e8202ffb1607c3d25"},{"reference_url":"https://github.com/python/cpython/commit/6ceb8aeda504b079fef7a57b8d81472f15cdd9a5","reference_id":"6ceb8aeda504b079fef7a57b8d81472f15cdd9a5","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/"}],"url":"https://github.com/python/cpython/commit/6ceb8aeda504b079fef7a57b8d81472f15cdd9a5"},{"reference_url":"https://github.com/python/cpython/commit/81c16cd94ec38d61aa478b9a452436dc3b1b524d","reference_id":"81c16cd94ec38d61aa478b9a452436dc3b1b524d","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/"}],"url":"https://github.com/python/cpython/commit/81c16cd94ec38d61aa478b9a452436dc3b1b524d"},{"reference_url":"https://github.com/python/cpython/commit/8eaeefe49d179ca4908d052745e3bb8b6f238f82","reference_id":"8eaeefe49d179ca4908d052745e3bb8b6f238f82","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/"}],"url":"https://github.com/python/cpython/commit/8eaeefe49d179ca4908d052745e3bb8b6f238f82"},{"reference_url":"https://github.com/python/cpython/issues/91133","reference_id":"91133","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/"}],"url":"https://github.com/python/cpython/issues/91133"},{"reference_url":"https://github.com/python/cpython/commit/d54e22a669ae6e987199bb5d2c69bb5a46b0083b","reference_id":"d54e22a669ae6e987199bb5d2c69bb5a46b0083b","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/"}],"url":"https://github.com/python/cpython/commit/d54e22a669ae6e987199bb5d2c69bb5a46b0083b"},{"reference_url":"https://security.gentoo.org/glsa/202405-01","reference_id":"GLSA-202405-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202405-01"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2024/03/msg00025.html","reference_id":"msg00025.html","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2024/03/msg00025.html"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/Q5C6ATFC67K53XFV4KE45325S7NS62LD/","reference_id":"Q5C6ATFC67K53XFV4KE45325S7NS62LD","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/Q5C6ATFC67K53XFV4KE45325S7NS62LD/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3347","reference_id":"RHSA-2024:3347","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3347"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3391","reference_id":"RHSA-2024:3391","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3391"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3466","reference_id":"RHSA-2024:3466","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3466"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4058","reference_id":"RHSA-2024:4058","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4058"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4077","reference_id":"RHSA-2024:4077","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4077"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4078","reference_id":"RHSA-2024:4078","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4078"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4166","reference_id":"RHSA-2024:4166","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4166"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4370","reference_id":"RHSA-2024:4370","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4370"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4406","reference_id":"RHSA-2024:4406","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4406"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4456","reference_id":"RHSA-2024:4456","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4456"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4896","reference_id":"RHSA-2024:4896","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4896"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:5535","reference_id":"RHSA-2024:5535","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:5535"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:5689","reference_id":"RHSA-2024:5689","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:5689"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:0364","reference_id":"RHSA-2025:0364","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:0364"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:0646","reference_id":"RHSA-2025:0646","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:0646"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:0650","reference_id":"RHSA-2025:0650","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:0650"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:0832","reference_id":"RHSA-2025:0832","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:0832"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:1116","reference_id":"RHSA-2025:1116","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:1116"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:1120","reference_id":"RHSA-2025:1120","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:1120"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2705","reference_id":"RHSA-2025:2705","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:2705"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T3IGRX54M7RNCQOXVQO5KQKTGWCOABIM/","reference_id":"T3IGRX54M7RNCQOXVQO5KQKTGWCOABIM","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T3IGRX54M7RNCQOXVQO5KQKTGWCOABIM/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U5VHWS52HGD743C47UMCSAK2A773M2YE/","reference_id":"U5VHWS52HGD743C47UMCSAK2A773M2YE","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U5VHWS52HGD743C47UMCSAK2A773M2YE/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/994362?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3"}],"aliases":["CVE-2023-6597"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7ka5-7jrn-dber"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/78164?format=json","vulnerability_id":"VCID-7nj2-94zp-d3bp","summary":"python: DoS when processing malformed Apple Property List files in binary format","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-48564.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-48564.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-48564","reference_id":"","reference_type":"","scores":[{"value":"0.00099","scoring_system":"epss","scoring_elements":"0.27213","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00099","scoring_system":"epss","scoring_elements":"0.2725","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00099","scoring_system":"epss","scoring_elements":"0.27044","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00099","scoring_system":"epss","scoring_elements":"0.27113","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00099","scoring_system":"epss","scoring_elements":"0.27159","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00099","scoring_system":"epss","scoring_elements":"0.27165","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00099","scoring_system":"epss","scoring_elements":"0.27121","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00099","scoring_system":"epss","scoring_elements":"0.26955","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00099","scoring_system":"epss","scoring_elements":"0.2689","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00099","scoring_system":"epss","scoring_elements":"0.27064","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00099","scoring_system":"epss","scoring_elements":"0.27072","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00099","scoring_system":"epss","scoring_elements":"0.27046","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00099","scoring_system":"epss","scoring_elements":"0.27008","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00099","scoring_system":"epss","scoring_elements":"0.26962","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00107","scoring_system":"epss","scoring_elements":"0.2841","published_at":"2026-05-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-48564"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48564","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48564"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2249750","reference_id":"2249750","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2249750"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0114","reference_id":"RHSA-2024:0114","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0114"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0430","reference_id":"RHSA-2024:0430","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0430"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0586","reference_id":"RHSA-2024:0586","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0586"},{"reference_url":"https://usn.ubuntu.com/6513-1/","reference_id":"USN-6513-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6513-1/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/995139?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-29cz-9gkc-1bfx"},{"vulnerability":"VCID-2shb-2cvn-dyd2"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4gsg-5e6s-63g4"},{"vulnerability":"VCID-4z89-3tfk-pyge"},{"vulnerability":"VCID-7ka5-7jrn-dber"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-dexx-3ssz-nqfg"},{"vulnerability":"VCID-e6rs-jwvu-jycd"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-h7z2-vc14-nfhq"},{"vulnerability":"VCID-js5p-py72-2kga"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qqh6-evfk-1fgy"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-tbuw-2msj-tqd9"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-vpwj-d49q-1uh8"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2"}],"aliases":["CVE-2022-48564"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7nj2-94zp-d3bp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/31508?format=json","vulnerability_id":"VCID-7s7y-9bw5-m3ep","summary":"Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-6232.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-6232.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-6232","reference_id":"","reference_type":"","scores":[{"value":"0.03036","scoring_system":"epss","scoring_elements":"0.86705","published_at":"2026-04-26T12:55:00Z"},{"value":"0.03036","scoring_system":"epss","scoring_elements":"0.86697","published_at":"2026-04-24T12:55:00Z"},{"value":"0.03175","scoring_system":"epss","scoring_elements":"0.86908","published_at":"2026-04-02T12:55:00Z"},{"value":"0.03175","scoring_system":"epss","scoring_elements":"0.86927","published_at":"2026-04-04T12:55:00Z"},{"value":"0.03645","scoring_system":"epss","scoring_elements":"0.87901","published_at":"2026-05-05T12:55:00Z"},{"value":"0.03645","scoring_system":"epss","scoring_elements":"0.87889","published_at":"2026-04-29T12:55:00Z"},{"value":"0.04022","scoring_system":"epss","scoring_elements":"0.88442","published_at":"2026-04-07T12:55:00Z"},{"value":"0.04022","scoring_system":"epss","scoring_elements":"0.88478","published_at":"2026-04-21T12:55:00Z"},{"value":"0.04022","scoring_system":"epss","scoring_elements":"0.8848","published_at":"2026-04-18T12:55:00Z"},{"value":"0.04022","scoring_system":"epss","scoring_elements":"0.88483","published_at":"2026-04-16T12:55:00Z"},{"value":"0.04022","scoring_system":"epss","scoring_elements":"0.88469","published_at":"2026-04-13T12:55:00Z"},{"value":"0.04022","scoring_system":"epss","scoring_elements":"0.8847","published_at":"2026-04-12T12:55:00Z"},{"value":"0.04022","scoring_system":"epss","scoring_elements":"0.88477","published_at":"2026-04-11T12:55:00Z"},{"value":"0.04022","scoring_system":"epss","scoring_elements":"0.88467","published_at":"2026-04-09T12:55:00Z"},{"value":"0.04022","scoring_system":"epss","scoring_elements":"0.88461","published_at":"2026-04-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-6232"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6232","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6232"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/issues/121285","reference_id":"121285","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/"}],"url":"https://github.com/python/cpython/issues/121285"},{"reference_url":"https://github.com/python/cpython/pull/121286","reference_id":"121286","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/"}],"url":"https://github.com/python/cpython/pull/121286"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2309426","reference_id":"2309426","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2309426"},{"reference_url":"https://github.com/python/cpython/commit/34ddb64d088dd7ccc321f6103d23153256caa5d4","reference_id":"34ddb64d088dd7ccc321f6103d23153256caa5d4","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/"}],"url":"https://github.com/python/cpython/commit/34ddb64d088dd7ccc321f6103d23153256caa5d4"},{"reference_url":"https://github.com/python/cpython/commit/4eaf4891c12589e3c7bdad5f5b076e4c8392dd06","reference_id":"4eaf4891c12589e3c7bdad5f5b076e4c8392dd06","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/"}],"url":"https://github.com/python/cpython/commit/4eaf4891c12589e3c7bdad5f5b076e4c8392dd06"},{"reference_url":"https://github.com/python/cpython/commit/743acbe872485dc18df4d8ab2dc7895187f062c4","reference_id":"743acbe872485dc18df4d8ab2dc7895187f062c4","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/"}],"url":"https://github.com/python/cpython/commit/743acbe872485dc18df4d8ab2dc7895187f062c4"},{"reference_url":"https://github.com/python/cpython/commit/7d1f50cd92ff7e10a1c15a8f591dde8a6843a64d","reference_id":"7d1f50cd92ff7e10a1c15a8f591dde8a6843a64d","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/"}],"url":"https://github.com/python/cpython/commit/7d1f50cd92ff7e10a1c15a8f591dde8a6843a64d"},{"reference_url":"https://github.com/python/cpython/commit/b4225ca91547aa97ed3aca391614afbb255bc877","reference_id":"b4225ca91547aa97ed3aca391614afbb255bc877","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/"}],"url":"https://github.com/python/cpython/commit/b4225ca91547aa97ed3aca391614afbb255bc877"},{"reference_url":"https://github.com/python/cpython/commit/d449caf8a179e3b954268b3a88eb9170be3c8fbf","reference_id":"d449caf8a179e3b954268b3a88eb9170be3c8fbf","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/"}],"url":"https://github.com/python/cpython/commit/d449caf8a179e3b954268b3a88eb9170be3c8fbf"},{"reference_url":"https://github.com/python/cpython/commit/ed3a49ea734ada357ff4442996fd4ae71d253373","reference_id":"ed3a49ea734ada357ff4442996fd4ae71d253373","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/"}],"url":"https://github.com/python/cpython/commit/ed3a49ea734ada357ff4442996fd4ae71d253373"},{"reference_url":"https://security.gentoo.org/glsa/202506-07","reference_id":"GLSA-202506-07","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202506-07"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/JRYFTPRHZRTLMZLWQEUHZSJXNHM4ACTY/","reference_id":"JRYFTPRHZRTLMZLWQEUHZSJXNHM4ACTY","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/JRYFTPRHZRTLMZLWQEUHZSJXNHM4ACTY/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6909","reference_id":"RHSA-2024:6909","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6909"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6975","reference_id":"RHSA-2024:6975","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6975"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7415","reference_id":"RHSA-2024:7415","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7415"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7647","reference_id":"RHSA-2024:7647","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7647"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8130","reference_id":"RHSA-2024:8130","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8130"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8359","reference_id":"RHSA-2024:8359","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8359"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8374","reference_id":"RHSA-2024:8374","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8374"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8446","reference_id":"RHSA-2024:8446","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8446"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8447","reference_id":"RHSA-2024:8447","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8447"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8490","reference_id":"RHSA-2024:8490","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8490"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8504","reference_id":"RHSA-2024:8504","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8504"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8797","reference_id":"RHSA-2024:8797","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8797"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8836","reference_id":"RHSA-2024:8836","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8836"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8838","reference_id":"RHSA-2024:8838","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8838"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8977","reference_id":"RHSA-2024:8977","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8977"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9450","reference_id":"RHSA-2024:9450","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:9450"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9451","reference_id":"RHSA-2024:9451","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:9451"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9468","reference_id":"RHSA-2024:9468","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:9468"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:1750","reference_id":"RHSA-2025:1750","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:1750"},{"reference_url":"https://usn.ubuntu.com/7015-1/","reference_id":"USN-7015-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7015-1/"},{"reference_url":"https://usn.ubuntu.com/7015-2/","reference_id":"USN-7015-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7015-2/"},{"reference_url":"https://usn.ubuntu.com/7015-5/","reference_id":"USN-7015-5","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7015-5/"},{"reference_url":"https://usn.ubuntu.com/7488-1/","reference_id":"USN-7488-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7488-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/994362?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3"},{"url":"http://public2.vulnerablecode.io/api/packages/994363?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2"}],"aliases":["CVE-2024-6232"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7s7y-9bw5-m3ep"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/31956?format=json","vulnerability_id":"VCID-8a7h-5rn5-gubx","summary":"A vulnerability has been discovered in GNAT Ada Suite which can lead to remote code execution.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27619.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27619.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-27619","reference_id":"","reference_type":"","scores":[{"value":"0.0063","scoring_system":"epss","scoring_elements":"0.70288","published_at":"2026-04-12T12:55:00Z"},{"value":"0.0063","scoring_system":"epss","scoring_elements":"0.70359","published_at":"2026-04-24T12:55:00Z"},{"value":"0.0063","scoring_system":"epss","scoring_elements":"0.70368","published_at":"2026-04-26T12:55:00Z"},{"value":"0.0063","scoring_system":"epss","scoring_elements":"0.70366","published_at":"2026-04-29T12:55:00Z"},{"value":"0.0063","scoring_system":"epss","scoring_elements":"0.70224","published_at":"2026-04-02T12:55:00Z"},{"value":"0.0063","scoring_system":"epss","scoring_elements":"0.7024","published_at":"2026-04-04T12:55:00Z"},{"value":"0.0063","scoring_system":"epss","scoring_elements":"0.70217","published_at":"2026-04-07T12:55:00Z"},{"value":"0.0063","scoring_system":"epss","scoring_elements":"0.70264","published_at":"2026-04-08T12:55:00Z"},{"value":"0.0063","scoring_system":"epss","scoring_elements":"0.70279","published_at":"2026-04-09T12:55:00Z"},{"value":"0.0063","scoring_system":"epss","scoring_elements":"0.70302","published_at":"2026-04-11T12:55:00Z"},{"value":"0.0063","scoring_system":"epss","scoring_elements":"0.70275","published_at":"2026-04-13T12:55:00Z"},{"value":"0.0063","scoring_system":"epss","scoring_elements":"0.70316","published_at":"2026-04-16T12:55:00Z"},{"value":"0.0063","scoring_system":"epss","scoring_elements":"0.70325","published_at":"2026-04-18T12:55:00Z"},{"value":"0.0063","scoring_system":"epss","scoring_elements":"0.70306","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00686","scoring_system":"epss","scoring_elements":"0.7165","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00854","scoring_system":"epss","scoring_elements":"0.75021","published_at":"2026-05-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-27619"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27619","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27619"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1889886","reference_id":"1889886","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1889886"},{"reference_url":"https://security.gentoo.org/glsa/202402-04","reference_id":"GLSA-202402-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202402-04"},{"reference_url":"https://security.gentoo.org/glsa/202409-12","reference_id":"GLSA-202409-12","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-12"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1633","reference_id":"RHSA-2021:1633","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1633"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3252","reference_id":"RHSA-2021:3252","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3252"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4151","reference_id":"RHSA-2021:4151","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4151"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4162","reference_id":"RHSA-2021:4162","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4162"},{"reference_url":"https://usn.ubuntu.com/4754-1/","reference_id":"USN-4754-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4754-1/"},{"reference_url":"https://usn.ubuntu.com/4754-3/","reference_id":"USN-4754-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4754-3/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/995139?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-29cz-9gkc-1bfx"},{"vulnerability":"VCID-2shb-2cvn-dyd2"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4gsg-5e6s-63g4"},{"vulnerability":"VCID-4z89-3tfk-pyge"},{"vulnerability":"VCID-7ka5-7jrn-dber"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-dexx-3ssz-nqfg"},{"vulnerability":"VCID-e6rs-jwvu-jycd"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-h7z2-vc14-nfhq"},{"vulnerability":"VCID-js5p-py72-2kga"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qqh6-evfk-1fgy"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-tbuw-2msj-tqd9"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-vpwj-d49q-1uh8"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2"}],"aliases":["CVE-2020-27619"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8a7h-5rn5-gubx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/31510?format=json","vulnerability_id":"VCID-9nvp-aus1-9yed","summary":"Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-6923.json","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-6923.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-6923","reference_id":"","reference_type":"","scores":[{"value":"0.00204","scoring_system":"epss","scoring_elements":"0.42427","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00238","scoring_system":"epss","scoring_elements":"0.46874","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00238","scoring_system":"epss","scoring_elements":"0.46924","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00238","scoring_system":"epss","scoring_elements":"0.46929","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00238","scoring_system":"epss","scoring_elements":"0.46873","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00238","scoring_system":"epss","scoring_elements":"0.46866","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00238","scoring_system":"epss","scoring_elements":"0.46893","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00238","scoring_system":"epss","scoring_elements":"0.4687","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00238","scoring_system":"epss","scoring_elements":"0.4685","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00238","scoring_system":"epss","scoring_elements":"0.46868","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00238","scoring_system":"epss","scoring_elements":"0.46858","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00245","scoring_system":"epss","scoring_elements":"0.47597","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00322","scoring_system":"epss","scoring_elements":"0.55276","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00322","scoring_system":"epss","scoring_elements":"0.55326","published_at":"2026-04-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-6923"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6923","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6923"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/commit/06f28dc236708f72871c64d4bc4b4ea144c50147","reference_id":"06f28dc236708f72871c64d4bc4b4ea144c50147","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/"}],"url":"https://github.com/python/cpython/commit/06f28dc236708f72871c64d4bc4b4ea144c50147"},{"reference_url":"https://github.com/python/cpython/commit/097633981879b3c9de9a1dd120d3aa585ecc2384","reference_id":"097633981879b3c9de9a1dd120d3aa585ecc2384","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/"}],"url":"https://github.com/python/cpython/commit/097633981879b3c9de9a1dd120d3aa585ecc2384"},{"reference_url":"https://github.com/python/cpython/issues/121650","reference_id":"121650","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/"}],"url":"https://github.com/python/cpython/issues/121650"},{"reference_url":"https://github.com/python/cpython/pull/122233","reference_id":"122233","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/"}],"url":"https://github.com/python/cpython/pull/122233"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2302255","reference_id":"2302255","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2302255"},{"reference_url":"https://github.com/python/cpython/commit/4766d1200fdf8b6728137aa2927a297e224d5fa7","reference_id":"4766d1200fdf8b6728137aa2927a297e224d5fa7","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/"}],"url":"https://github.com/python/cpython/commit/4766d1200fdf8b6728137aa2927a297e224d5fa7"},{"reference_url":"https://github.com/python/cpython/commit/4aaa4259b5a6e664b7316a4d60bdec7ee0f124d0","reference_id":"4aaa4259b5a6e664b7316a4d60bdec7ee0f124d0","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/"}],"url":"https://github.com/python/cpython/commit/4aaa4259b5a6e664b7316a4d60bdec7ee0f124d0"},{"reference_url":"https://github.com/python/cpython/commit/b158a76ce094897c870fb6b3de62887b7ccc33f1","reference_id":"b158a76ce094897c870fb6b3de62887b7ccc33f1","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/"}],"url":"https://github.com/python/cpython/commit/b158a76ce094897c870fb6b3de62887b7ccc33f1"},{"reference_url":"https://github.com/python/cpython/commit/f7be505d137a22528cb0fc004422c0081d5d90e6","reference_id":"f7be505d137a22528cb0fc004422c0081d5d90e6","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/"}],"url":"https://github.com/python/cpython/commit/f7be505d137a22528cb0fc004422c0081d5d90e6"},{"reference_url":"https://github.com/python/cpython/commit/f7c0f09e69e950cf3c5ada9dbde93898eb975533","reference_id":"f7c0f09e69e950cf3c5ada9dbde93898eb975533","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/"}],"url":"https://github.com/python/cpython/commit/f7c0f09e69e950cf3c5ada9dbde93898eb975533"},{"reference_url":"https://security.gentoo.org/glsa/202506-07","reference_id":"GLSA-202506-07","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202506-07"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/QH3BUOE2DYQBWP7NAQ7UNHPPOELKISRW/","reference_id":"QH3BUOE2DYQBWP7NAQ7UNHPPOELKISRW","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/QH3BUOE2DYQBWP7NAQ7UNHPPOELKISRW/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:10135","reference_id":"RHSA-2024:10135","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:10135"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:11109","reference_id":"RHSA-2024:11109","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:11109"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:5962","reference_id":"RHSA-2024:5962","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:5962"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6146","reference_id":"RHSA-2024:6146","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6146"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6163","reference_id":"RHSA-2024:6163","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6163"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6179","reference_id":"RHSA-2024:6179","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6179"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6909","reference_id":"RHSA-2024:6909","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6909"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6915","reference_id":"RHSA-2024:6915","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6915"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6961","reference_id":"RHSA-2024:6961","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6961"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6962","reference_id":"RHSA-2024:6962","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6962"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6975","reference_id":"RHSA-2024:6975","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:6975"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7137","reference_id":"RHSA-2024:7137","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7137"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7213","reference_id":"RHSA-2024:7213","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7213"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7374","reference_id":"RHSA-2024:7374","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7374"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:7415","reference_id":"RHSA-2024:7415","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:7415"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8103","reference_id":"RHSA-2024:8103","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:8103"},{"reference_url":"https://usn.ubuntu.com/7015-1/","reference_id":"USN-7015-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7015-1/"},{"reference_url":"https://usn.ubuntu.com/7015-5/","reference_id":"USN-7015-5","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7015-5/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/994362?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3"},{"url":"http://public2.vulnerablecode.io/api/packages/994363?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2"}],"aliases":["CVE-2024-6923"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"6.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9nvp-aus1-9yed"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/70893?format=json","vulnerability_id":"VCID-9sms-mhht-n3aq","summary":"python: Mishandling of comma during folding and unicode-encoding of email headers","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-1795.json","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-1795.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-1795","reference_id":"","reference_type":"","scores":[{"value":"0.00593","scoring_system":"epss","scoring_elements":"0.6923","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00593","scoring_system":"epss","scoring_elements":"0.6921","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00593","scoring_system":"epss","scoring_elements":"0.69212","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00753","scoring_system":"epss","scoring_elements":"0.73285","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00753","scoring_system":"epss","scoring_elements":"0.73224","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00753","scoring_system":"epss","scoring_elements":"0.73205","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00753","scoring_system":"epss","scoring_elements":"0.73199","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00753","scoring_system":"epss","scoring_elements":"0.73242","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00753","scoring_system":"epss","scoring_elements":"0.73251","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00753","scoring_system":"epss","scoring_elements":"0.73244","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00753","scoring_system":"epss","scoring_elements":"0.73279","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00753","scoring_system":"epss","scoring_elements":"0.73292","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00753","scoring_system":"epss","scoring_elements":"0.7329","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00791","scoring_system":"epss","scoring_elements":"0.73886","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00873","scoring_system":"epss","scoring_elements":"0.75243","published_at":"2026-04-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-1795"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1795","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1795"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/commit/09fab93c3d857496c0bd162797fab816c311ee48","reference_id":"09fab93c3d857496c0bd162797fab816c311ee48","reference_type":"","scores":[{"value":"2.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/"}],"url":"https://github.com/python/cpython/commit/09fab93c3d857496c0bd162797fab816c311ee48"},{"reference_url":"https://github.com/python/cpython/issues/100884","reference_id":"100884","reference_type":"","scores":[{"value":"2.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/"}],"url":"https://github.com/python/cpython/issues/100884"},{"reference_url":"https://github.com/python/cpython/pull/100885","reference_id":"100885","reference_type":"","scores":[{"value":"2.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/"}],"url":"https://github.com/python/cpython/pull/100885"},{"reference_url":"https://github.com/python/cpython/pull/119099","reference_id":"119099","reference_type":"","scores":[{"value":"2.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/"}],"url":"https://github.com/python/cpython/pull/119099"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2349061","reference_id":"2349061","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2349061"},{"reference_url":"https://github.com/python/cpython/commit/70754d21c288535e86070ca7a6e90dcb670b8593","reference_id":"70754d21c288535e86070ca7a6e90dcb670b8593","reference_type":"","scores":[{"value":"2.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/"}],"url":"https://github.com/python/cpython/commit/70754d21c288535e86070ca7a6e90dcb670b8593"},{"reference_url":"https://github.com/python/cpython/commit/9148b77e0af91cdacaa7fe3dfac09635c3fe9a74","reference_id":"9148b77e0af91cdacaa7fe3dfac09635c3fe9a74","reference_type":"","scores":[{"value":"2.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/"}],"url":"https://github.com/python/cpython/commit/9148b77e0af91cdacaa7fe3dfac09635c3fe9a74"},{"reference_url":"https://github.com/python/cpython/commit/a4ef689ce670684ec132204b1cd03720c8e0a03d","reference_id":"a4ef689ce670684ec132204b1cd03720c8e0a03d","reference_type":"","scores":[{"value":"2.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/"}],"url":"https://github.com/python/cpython/commit/a4ef689ce670684ec132204b1cd03720c8e0a03d"},{"reference_url":"https://github.com/python/cpython/commit/d4df3c55e4c5513947f907f24766b34d2ae8c090","reference_id":"d4df3c55e4c5513947f907f24766b34d2ae8c090","reference_type":"","scores":[{"value":"2.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/"}],"url":"https://github.com/python/cpython/commit/d4df3c55e4c5513947f907f24766b34d2ae8c090"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/MB62IZMEC3UM6SGHP5LET5JX2Y7H4ZUR/","reference_id":"MB62IZMEC3UM6SGHP5LET5JX2Y7H4ZUR","reference_type":"","scores":[{"value":"2.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/MB62IZMEC3UM6SGHP5LET5JX2Y7H4ZUR/"},{"reference_url":"https://usn.ubuntu.com/7570-1/","reference_id":"USN-7570-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7570-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/994362?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3"},{"url":"http://public2.vulnerablecode.io/api/packages/994363?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2"}],"aliases":["CVE-2025-1795"],"risk_score":1.4,"exploitability":"0.5","weighted_severity":"2.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9sms-mhht-n3aq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/80106?format=json","vulnerability_id":"VCID-ct6h-d1eh-7bgj","summary":"python: urllib: Regular expression DoS in AbstractBasicAuthHandler","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3733.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3733.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3733","reference_id":"","reference_type":"","scores":[{"value":"0.00629","scoring_system":"epss","scoring_elements":"0.70325","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00653","scoring_system":"epss","scoring_elements":"0.70978","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00653","scoring_system":"epss","scoring_elements":"0.70988","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00653","scoring_system":"epss","scoring_elements":"0.70986","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00666","scoring_system":"epss","scoring_elements":"0.71216","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00666","scoring_system":"epss","scoring_elements":"0.71198","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00666","scoring_system":"epss","scoring_elements":"0.71189","published_at":"2026-04-01T12:55:00Z"},{"value":"0.0076","scoring_system":"epss","scoring_elements":"0.73376","published_at":"2026-04-16T12:55:00Z"},{"value":"0.0076","scoring_system":"epss","scoring_elements":"0.73383","published_at":"2026-04-18T12:55:00Z"},{"value":"0.0076","scoring_system":"epss","scoring_elements":"0.73377","published_at":"2026-04-21T12:55:00Z"},{"value":"0.0076","scoring_system":"epss","scoring_elements":"0.73333","published_at":"2026-04-13T12:55:00Z"},{"value":"0.0076","scoring_system":"epss","scoring_elements":"0.73288","published_at":"2026-04-07T12:55:00Z"},{"value":"0.0076","scoring_system":"epss","scoring_elements":"0.73324","published_at":"2026-04-08T12:55:00Z"},{"value":"0.0076","scoring_system":"epss","scoring_elements":"0.73337","published_at":"2026-04-09T12:55:00Z"},{"value":"0.0076","scoring_system":"epss","scoring_elements":"0.73361","published_at":"2026-04-11T12:55:00Z"},{"value":"0.0076","scoring_system":"epss","scoring_elements":"0.73341","published_at":"2026-04-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3733"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3733","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3733"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1995234","reference_id":"1995234","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1995234"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4057","reference_id":"RHSA-2021:4057","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4057"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4160","reference_id":"RHSA-2021:4160","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4160"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1663","reference_id":"RHSA-2022:1663","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1663"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1764","reference_id":"RHSA-2022:1764","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1764"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1821","reference_id":"RHSA-2022:1821","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1821"},{"reference_url":"https://usn.ubuntu.com/5083-1/","reference_id":"USN-5083-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5083-1/"},{"reference_url":"https://usn.ubuntu.com/5199-1/","reference_id":"USN-5199-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5199-1/"},{"reference_url":"https://usn.ubuntu.com/5200-1/","reference_id":"USN-5200-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5200-1/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/995139?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-29cz-9gkc-1bfx"},{"vulnerability":"VCID-2shb-2cvn-dyd2"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4gsg-5e6s-63g4"},{"vulnerability":"VCID-4z89-3tfk-pyge"},{"vulnerability":"VCID-7ka5-7jrn-dber"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-dexx-3ssz-nqfg"},{"vulnerability":"VCID-e6rs-jwvu-jycd"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-h7z2-vc14-nfhq"},{"vulnerability":"VCID-js5p-py72-2kga"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qqh6-evfk-1fgy"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-tbuw-2msj-tqd9"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-vpwj-d49q-1uh8"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2"}],"aliases":["CVE-2021-3733"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ct6h-d1eh-7bgj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/78472?format=json","vulnerability_id":"VCID-dexx-3ssz-nqfg","summary":"python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-27043.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-27043.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-27043","reference_id":"","reference_type":"","scores":[{"value":"0.00161","scoring_system":"epss","scoring_elements":"0.36448","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00175","scoring_system":"epss","scoring_elements":"0.38674","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00175","scoring_system":"epss","scoring_elements":"0.39083","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00175","scoring_system":"epss","scoring_elements":"0.38561","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00175","scoring_system":"epss","scoring_elements":"0.38649","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00175","scoring_system":"epss","scoring_elements":"0.38839","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00175","scoring_system":"epss","scoring_elements":"0.39069","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00175","scoring_system":"epss","scoring_elements":"0.39099","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00175","scoring_system":"epss","scoring_elements":"0.39044","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00175","scoring_system":"epss","scoring_elements":"0.39064","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00175","scoring_system":"epss","scoring_elements":"0.39102","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00175","scoring_system":"epss","scoring_elements":"0.39089","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00175","scoring_system":"epss","scoring_elements":"0.39074","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00175","scoring_system":"epss","scoring_elements":"0.39021","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00175","scoring_system":"epss","scoring_elements":"0.39103","published_at":"2026-04-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-27043"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-27043","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-27043"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/issues/102988","reference_id":"102988","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://github.com/python/cpython/issues/102988"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059298","reference_id":"1059298","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059298"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1072179","reference_id":"1072179","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1072179"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2196183","reference_id":"2196183","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2196183"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4ZAEFSFZDNBNJPNOUTLG5COISGQDLMGV/","reference_id":"4ZAEFSFZDNBNJPNOUTLG5COISGQDLMGV","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4ZAEFSFZDNBNJPNOUTLG5COISGQDLMGV/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/75DTHSTNOFFNAWHXKMDXS7EJWC6W2FUC/","reference_id":"75DTHSTNOFFNAWHXKMDXS7EJWC6W2FUC","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/75DTHSTNOFFNAWHXKMDXS7EJWC6W2FUC/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ARI7VDSNTQVXRQFM6IK5GSSLEIYV4VZH/","reference_id":"ARI7VDSNTQVXRQFM6IK5GSSLEIYV4VZH","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ARI7VDSNTQVXRQFM6IK5GSSLEIYV4VZH/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BQAKLUJMHFGVBRDPEY57BJGNCE5UUPHW/","reference_id":"BQAKLUJMHFGVBRDPEY57BJGNCE5UUPHW","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BQAKLUJMHFGVBRDPEY57BJGNCE5UUPHW/"},{"reference_url":"https://python-security.readthedocs.io/vuln/email-parseaddr-realname.html","reference_id":"email-parseaddr-realname.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://python-security.readthedocs.io/vuln/email-parseaddr-realname.html"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HXYVPEZUA3465AEFX5JVFVP7KIFZMF3N/","reference_id":"HXYVPEZUA3465AEFX5JVFVP7KIFZMF3N","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HXYVPEZUA3465AEFX5JVFVP7KIFZMF3N/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N6M5I6OQHJABNEYY555HUMMKX3Y4P25Z/","reference_id":"N6M5I6OQHJABNEYY555HUMMKX3Y4P25Z","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N6M5I6OQHJABNEYY555HUMMKX3Y4P25Z/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NEUNZSZ3CVSM2QWVYH3N2XGOCDWNYUA3/","reference_id":"NEUNZSZ3CVSM2QWVYH3N2XGOCDWNYUA3","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NEUNZSZ3CVSM2QWVYH3N2XGOCDWNYUA3/"},{"reference_url":"https://security.netapp.com/advisory/ntap-20230601-0003/","reference_id":"ntap-20230601-0003","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://security.netapp.com/advisory/ntap-20230601-0003/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ORLXS5YTKN65E2Q2NWKXMFS5FWQHRNZW/","reference_id":"ORLXS5YTKN65E2Q2NWKXMFS5FWQHRNZW","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ORLXS5YTKN65E2Q2NWKXMFS5FWQHRNZW/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/P2MAICLFDDO3QVNHTZ2OCERZQ34R2PIC/","reference_id":"P2MAICLFDDO3QVNHTZ2OCERZQ34R2PIC","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/P2MAICLFDDO3QVNHTZ2OCERZQ34R2PIC/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/P2W2BZQIHMCKRI5FNBJERFYMS5PK6TAH/","reference_id":"P2W2BZQIHMCKRI5FNBJERFYMS5PK6TAH","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/P2W2BZQIHMCKRI5FNBJERFYMS5PK6TAH/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PHVGRKQAGANCSGFI3QMYOCIMS4IFOZA5/","reference_id":"PHVGRKQAGANCSGFI3QMYOCIMS4IFOZA5","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PHVGRKQAGANCSGFI3QMYOCIMS4IFOZA5/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PU6Y2S5CBN5BWCBDAJFTGIBZLK3S2G3J/","reference_id":"PU6Y2S5CBN5BWCBDAJFTGIBZLK3S2G3J","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PU6Y2S5CBN5BWCBDAJFTGIBZLK3S2G3J/"},{"reference_url":"http://python.org","reference_id":"python.org","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"http://python.org"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QDRDDPDN3VFIYXJIYEABY6USX5EU66AG/","reference_id":"QDRDDPDN3VFIYXJIYEABY6USX5EU66AG","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QDRDDPDN3VFIYXJIYEABY6USX5EU66AG/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RDDC2VOX7OQC6OHMYTVD4HLFZIV6PYBC/","reference_id":"RDDC2VOX7OQC6OHMYTVD4HLFZIV6PYBC","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RDDC2VOX7OQC6OHMYTVD4HLFZIV6PYBC/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0256","reference_id":"RHSA-2024:0256","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0256"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0430","reference_id":"RHSA-2024:0430","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0430"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0454","reference_id":"RHSA-2024:0454","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0454"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0466","reference_id":"RHSA-2024:0466","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0466"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0586","reference_id":"RHSA-2024:0586","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0586"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:1383","reference_id":"RHSA-2024:1383","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:1383"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2292","reference_id":"RHSA-2024:2292","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2292"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2985","reference_id":"RHSA-2024:2985","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2985"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3062","reference_id":"RHSA-2024:3062","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3062"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SINP4OVYNB2AGDYI2GS37EMW3H3F7XPZ/","reference_id":"SINP4OVYNB2AGDYI2GS37EMW3H3F7XPZ","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SINP4OVYNB2AGDYI2GS37EMW3H3F7XPZ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SOX7BCN6YL7B3RFPEEXPIU5CMTEHJOKR/","reference_id":"SOX7BCN6YL7B3RFPEEXPIU5CMTEHJOKR","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SOX7BCN6YL7B3RFPEEXPIU5CMTEHJOKR/"},{"reference_url":"https://usn.ubuntu.com/7015-1/","reference_id":"USN-7015-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7015-1/"},{"reference_url":"https://usn.ubuntu.com/7015-3/","reference_id":"USN-7015-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7015-3/"},{"reference_url":"https://usn.ubuntu.com/7015-4/","reference_id":"USN-7015-4","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7015-4/"},{"reference_url":"https://usn.ubuntu.com/7015-7/","reference_id":"USN-7015-7","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7015-7/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VZXC32CJ7TWDPJO6GY2XIQRO7JZX5FLP/","reference_id":"VZXC32CJ7TWDPJO6GY2XIQRO7JZX5FLP","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VZXC32CJ7TWDPJO6GY2XIQRO7JZX5FLP/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XWMBD4LNHWEXRI6YVFWJMTJQUL5WOFTS/","reference_id":"XWMBD4LNHWEXRI6YVFWJMTJQUL5WOFTS","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XWMBD4LNHWEXRI6YVFWJMTJQUL5WOFTS/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YQVY5C5REXWJIORJIL2FIL3ALOEJEF72/","reference_id":"YQVY5C5REXWJIORJIL2FIL3ALOEJEF72","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YQVY5C5REXWJIORJIL2FIL3ALOEJEF72/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/994362?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3"}],"aliases":["CVE-2023-27043"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dexx-3ssz-nqfg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/80107?format=json","vulnerability_id":"VCID-e6rs-jwvu-jycd","summary":"python: urllib: HTTP client possible infinite loop on a 100 Continue response","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3737.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3737.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3737","reference_id":"","reference_type":"","scores":[{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30825","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30749","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30954","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30246","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30384","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30466","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30583","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.31001","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30818","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30876","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30906","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30909","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30866","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30821","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30852","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00119","scoring_system":"epss","scoring_elements":"0.30832","published_at":"2026-04-18T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3737"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3737","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3737"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1995162","reference_id":"1995162","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:32:43Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1995162"},{"reference_url":"https://github.com/python/cpython/pull/25916","reference_id":"25916","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:32:43Z/"}],"url":"https://github.com/python/cpython/pull/25916"},{"reference_url":"https://github.com/python/cpython/pull/26503","reference_id":"26503","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:32:43Z/"}],"url":"https://github.com/python/cpython/pull/26503"},{"reference_url":"https://ubuntu.com/security/CVE-2021-3737","reference_id":"CVE-2021-3737","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:32:43Z/"}],"url":"https://ubuntu.com/security/CVE-2021-3737"},{"reference_url":"https://bugs.python.org/issue44022","reference_id":"issue44022","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:32:43Z/"}],"url":"https://bugs.python.org/issue44022"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/05/msg00024.html","reference_id":"msg00024.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:32:43Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/05/msg00024.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html","reference_id":"msg00039.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:32:43Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20220407-0009/","reference_id":"ntap-20220407-0009","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:32:43Z/"}],"url":"https://security.netapp.com/advisory/ntap-20220407-0009/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4160","reference_id":"RHSA-2021:4160","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4160"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1663","reference_id":"RHSA-2022:1663","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1663"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1764","reference_id":"RHSA-2022:1764","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1764"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1821","reference_id":"RHSA-2022:1821","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1821"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1986","reference_id":"RHSA-2022:1986","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1986"},{"reference_url":"https://python-security.readthedocs.io/vuln/urllib-100-continue-loop.html","reference_id":"urllib-100-continue-loop.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:32:43Z/"}],"url":"https://python-security.readthedocs.io/vuln/urllib-100-continue-loop.html"},{"reference_url":"https://usn.ubuntu.com/5083-1/","reference_id":"USN-5083-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5083-1/"},{"reference_url":"https://usn.ubuntu.com/5199-1/","reference_id":"USN-5199-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5199-1/"},{"reference_url":"https://usn.ubuntu.com/5200-1/","reference_id":"USN-5200-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5200-1/"},{"reference_url":"https://usn.ubuntu.com/5201-1/","reference_id":"USN-5201-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5201-1/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/994362?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3"}],"aliases":["CVE-2021-3737"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-e6rs-jwvu-jycd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/71919?format=json","vulnerability_id":"VCID-e6sb-bh7v-9ugg","summary":"python: cpython: URL parser allowed square brackets in domain names","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-0938.json","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-0938.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-0938","reference_id":"","reference_type":"","scores":[{"value":"0.01412","scoring_system":"epss","scoring_elements":"0.80562","published_at":"2026-04-21T12:55:00Z"},{"value":"0.0148","scoring_system":"epss","scoring_elements":"0.8108","published_at":"2026-05-05T12:55:00Z"},{"value":"0.0148","scoring_system":"epss","scoring_elements":"0.81049","published_at":"2026-04-24T12:55:00Z"},{"value":"0.0148","scoring_system":"epss","scoring_elements":"0.81057","published_at":"2026-04-26T12:55:00Z"},{"value":"0.0148","scoring_system":"epss","scoring_elements":"0.81064","published_at":"2026-04-29T12:55:00Z"},{"value":"0.01561","scoring_system":"epss","scoring_elements":"0.81446","published_at":"2026-04-07T12:55:00Z"},{"value":"0.01561","scoring_system":"epss","scoring_elements":"0.81426","published_at":"2026-04-02T12:55:00Z"},{"value":"0.01561","scoring_system":"epss","scoring_elements":"0.81474","published_at":"2026-04-08T12:55:00Z"},{"value":"0.01561","scoring_system":"epss","scoring_elements":"0.81448","published_at":"2026-04-04T12:55:00Z"},{"value":"0.01561","scoring_system":"epss","scoring_elements":"0.81482","published_at":"2026-04-13T12:55:00Z"},{"value":"0.01561","scoring_system":"epss","scoring_elements":"0.81489","published_at":"2026-04-12T12:55:00Z"},{"value":"0.01561","scoring_system":"epss","scoring_elements":"0.81501","published_at":"2026-04-11T12:55:00Z"},{"value":"0.01561","scoring_system":"epss","scoring_elements":"0.8148","published_at":"2026-04-09T12:55:00Z"},{"value":"0.01728","scoring_system":"epss","scoring_elements":"0.82481","published_at":"2026-04-18T12:55:00Z"},{"value":"0.01728","scoring_system":"epss","scoring_elements":"0.8248","published_at":"2026-04-16T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-0938"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0938","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0938"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/issues/105704","reference_id":"105704","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/"}],"url":"https://github.com/python/cpython/issues/105704"},{"reference_url":"https://github.com/python/cpython/pull/129418","reference_id":"129418","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/"}],"url":"https://github.com/python/cpython/pull/129418"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2343237","reference_id":"2343237","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2343237"},{"reference_url":"https://github.com/python/cpython/commit/526617ed68cde460236c973e5d0a8bad4de896ba","reference_id":"526617ed68cde460236c973e5d0a8bad4de896ba","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/"}],"url":"https://github.com/python/cpython/commit/526617ed68cde460236c973e5d0a8bad4de896ba"},{"reference_url":"https://github.com/python/cpython/commit/90e526ae67b172ed7c6c56e7edad36263b0f9403","reference_id":"90e526ae67b172ed7c6c56e7edad36263b0f9403","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/"}],"url":"https://github.com/python/cpython/commit/90e526ae67b172ed7c6c56e7edad36263b0f9403"},{"reference_url":"https://github.com/python/cpython/commit/a7084f6075c9595ba60119ce8c62f1496f50c568","reference_id":"a7084f6075c9595ba60119ce8c62f1496f50c568","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/"}],"url":"https://github.com/python/cpython/commit/a7084f6075c9595ba60119ce8c62f1496f50c568"},{"reference_url":"https://github.com/python/cpython/commit/b8b4b713c5f8ec0958c7ef8d29d6711889bc94ab","reference_id":"b8b4b713c5f8ec0958c7ef8d29d6711889bc94ab","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/"}],"url":"https://github.com/python/cpython/commit/b8b4b713c5f8ec0958c7ef8d29d6711889bc94ab"},{"reference_url":"https://github.com/python/cpython/commit/d89a5f6a6e65511a5f6e0618c4c30a7aa5aba56a","reference_id":"d89a5f6a6e65511a5f6e0618c4c30a7aa5aba56a","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/"}],"url":"https://github.com/python/cpython/commit/d89a5f6a6e65511a5f6e0618c4c30a7aa5aba56a"},{"reference_url":"https://github.com/python/cpython/commit/ff4e5c25666f63544071a6b075ae8b25c98b7a32","reference_id":"ff4e5c25666f63544071a6b075ae8b25c98b7a32","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/"}],"url":"https://github.com/python/cpython/commit/ff4e5c25666f63544071a6b075ae8b25c98b7a32"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/K4EUG6EKV6JYFIC24BASYOZS4M5XOQIB/","reference_id":"K4EUG6EKV6JYFIC24BASYOZS4M5XOQIB","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/K4EUG6EKV6JYFIC24BASYOZS4M5XOQIB/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23530","reference_id":"RHSA-2025:23530","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23530"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:6977","reference_id":"RHSA-2025:6977","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:6977"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7107","reference_id":"RHSA-2025:7107","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:7107"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7109","reference_id":"RHSA-2025:7109","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:7109"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:8385","reference_id":"RHSA-2025:8385","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:8385"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:5588","reference_id":"RHSA-2026:5588","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:5588"},{"reference_url":"https://usn.ubuntu.com/7280-1/","reference_id":"USN-7280-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7280-1/"},{"reference_url":"https://usn.ubuntu.com/7280-2/","reference_id":"USN-7280-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7280-2/"},{"reference_url":"https://usn.ubuntu.com/7280-3/","reference_id":"USN-7280-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7280-3/"},{"reference_url":"https://usn.ubuntu.com/7348-1/","reference_id":"USN-7348-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7348-1/"},{"reference_url":"https://usn.ubuntu.com/7348-2/","reference_id":"USN-7348-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7348-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/994362?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3"},{"url":"http://public2.vulnerablecode.io/api/packages/994363?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2"}],"aliases":["CVE-2025-0938"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"6.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-e6sb-bh7v-9ugg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/69414?format=json","vulnerability_id":"VCID-emaw-jmek-9bcy","summary":"cpython: Python HTMLParser quadratic complexity","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-6069.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-6069.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-6069","reference_id":"","reference_type":"","scores":[{"value":"0.00283","scoring_system":"epss","scoring_elements":"0.51588","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00306","scoring_system":"epss","scoring_elements":"0.5389","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00306","scoring_system":"epss","scoring_elements":"0.53842","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00306","scoring_system":"epss","scoring_elements":"0.53844","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00306","scoring_system":"epss","scoring_elements":"0.53818","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00306","scoring_system":"epss","scoring_elements":"0.53792","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00306","scoring_system":"epss","scoring_elements":"0.53873","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00864","scoring_system":"epss","scoring_elements":"0.75175","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00864","scoring_system":"epss","scoring_elements":"0.75086","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00864","scoring_system":"epss","scoring_elements":"0.75123","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00864","scoring_system":"epss","scoring_elements":"0.7513","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00864","scoring_system":"epss","scoring_elements":"0.7512","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00864","scoring_system":"epss","scoring_elements":"0.75159","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00864","scoring_system":"epss","scoring_elements":"0.75162","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00864","scoring_system":"epss","scoring_elements":"0.75166","published_at":"2026-04-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-6069"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6069","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6069"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1109376","reference_id":"1109376","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1109376"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1118430","reference_id":"1118430","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1118430"},{"reference_url":"https://github.com/python/cpython/issues/135462","reference_id":"135462","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T13:58:28Z/"}],"url":"https://github.com/python/cpython/issues/135462"},{"reference_url":"https://github.com/python/cpython/pull/135464","reference_id":"135464","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T13:58:28Z/"}],"url":"https://github.com/python/cpython/pull/135464"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2373234","reference_id":"2373234","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2373234"},{"reference_url":"https://github.com/python/cpython/commit/4455cbabf991e202185a25a631af206f60bbc949","reference_id":"4455cbabf991e202185a25a631af206f60bbc949","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T13:58:28Z/"}],"url":"https://github.com/python/cpython/commit/4455cbabf991e202185a25a631af206f60bbc949"},{"reference_url":"https://github.com/python/cpython/commit/6eb6c5dbfb528bd07d77b60fd71fd05d81d45c41","reference_id":"6eb6c5dbfb528bd07d77b60fd71fd05d81d45c41","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T13:58:28Z/"}],"url":"https://github.com/python/cpython/commit/6eb6c5dbfb528bd07d77b60fd71fd05d81d45c41"},{"reference_url":"https://github.com/python/cpython/commit/8d1b3dfa09135affbbf27fb8babcf3c11415df49","reference_id":"8d1b3dfa09135affbbf27fb8babcf3c11415df49","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T13:58:28Z/"}],"url":"https://github.com/python/cpython/commit/8d1b3dfa09135affbbf27fb8babcf3c11415df49"},{"reference_url":"https://github.com/python/cpython/commit/ab0893fd5c579d9cea30841680e6d35fc478afb5","reference_id":"ab0893fd5c579d9cea30841680e6d35fc478afb5","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T13:58:28Z/"}],"url":"https://github.com/python/cpython/commit/ab0893fd5c579d9cea30841680e6d35fc478afb5"},{"reference_url":"https://github.com/python/cpython/commit/d851f8e258c7328814943e923a7df81bca15df4b","reference_id":"d851f8e258c7328814943e923a7df81bca15df4b","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T13:58:28Z/"}],"url":"https://github.com/python/cpython/commit/d851f8e258c7328814943e923a7df81bca15df4b"},{"reference_url":"https://github.com/python/cpython/commit/f3c6f882cddc8dc30320d2e73edf019e201394fc","reference_id":"f3c6f882cddc8dc30320d2e73edf019e201394fc","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T13:58:28Z/"}],"url":"https://github.com/python/cpython/commit/f3c6f882cddc8dc30320d2e73edf019e201394fc"},{"reference_url":"https://github.com/python/cpython/commit/fdc9d214c01cb4588f540cfa03726bbf2a33fc15","reference_id":"fdc9d214c01cb4588f540cfa03726bbf2a33fc15","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T13:58:28Z/"}],"url":"https://github.com/python/cpython/commit/fdc9d214c01cb4588f540cfa03726bbf2a33fc15"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/K5PIYLR6EP3WR7ZOKKYQUWEDNQVUXOYM/","reference_id":"K5PIYLR6EP3WR7ZOKKYQUWEDNQVUXOYM","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T13:58:28Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/K5PIYLR6EP3WR7ZOKKYQUWEDNQVUXOYM/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23342","reference_id":"RHSA-2025:23342","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23342"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23530","reference_id":"RHSA-2025:23530","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23530"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0414","reference_id":"RHSA-2026:0414","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:0414"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0685","reference_id":"RHSA-2026:0685","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:0685"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1652","reference_id":"RHSA-2026:1652","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1652"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1858","reference_id":"RHSA-2026:1858","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1858"},{"reference_url":"https://usn.ubuntu.com/7710-1/","reference_id":"USN-7710-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7710-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/994362?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3"},{"url":"http://public2.vulnerablecode.io/api/packages/994364?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4"},{"url":"http://public2.vulnerablecode.io/api/packages/1088966?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1"}],"aliases":["CVE-2025-6069"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-emaw-jmek-9bcy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/30515?format=json","vulnerability_id":"VCID-ewbq-2gm8-tyf5","summary":"Buffer overflow in sponge queue functions\n### Impact\n\nThe Keccak sponge function interface accepts partial inputs to be absorbed and partial outputs to be squeezed. A buffer can overflow when partial data with some specific sizes are queued, where at least one of them has a length of 2^32 - 200 bytes or more.\n\n### Patches\n\nYes, see commit [fdc6fef0](https://github.com/XKCP/XKCP/commit/fdc6fef075f4e81d6b1bc38364248975e08e340a).\n\n### Workarounds\n\nThe problem can be avoided by limiting the size of the partial input data (or partial output digest) below 2^32 - 200 bytes. Multiple calls to the queue system can be chained at a higher level to retain the original functionality. Alternatively, one can process the entire input (or produce the entire output) at once, avoiding the queuing functions altogether.\n\n### References\n\nSee [issue #105](https://github.com/XKCP/XKCP/issues/105) for more details.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-37454.json","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-37454.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-37454","reference_id":"","reference_type":"","scores":[{"value":"0.01329","scoring_system":"epss","scoring_elements":"0.79935","published_at":"2026-04-13T12:55:00Z"},{"value":"0.01329","scoring_system":"epss","scoring_elements":"0.79894","published_at":"2026-04-02T12:55:00Z"},{"value":"0.01329","scoring_system":"epss","scoring_elements":"0.79943","published_at":"2026-04-12T12:55:00Z"},{"value":"0.01329","scoring_system":"epss","scoring_elements":"0.7996","published_at":"2026-04-11T12:55:00Z"},{"value":"0.01329","scoring_system":"epss","scoring_elements":"0.7994","published_at":"2026-04-09T12:55:00Z"},{"value":"0.01329","scoring_system":"epss","scoring_elements":"0.79931","published_at":"2026-04-08T12:55:00Z"},{"value":"0.01329","scoring_system":"epss","scoring_elements":"0.79903","published_at":"2026-04-07T12:55:00Z"},{"value":"0.01329","scoring_system":"epss","scoring_elements":"0.79915","published_at":"2026-04-04T12:55:00Z"},{"value":"0.014","scoring_system":"epss","scoring_elements":"0.80499","published_at":"2026-04-29T12:55:00Z"},{"value":"0.014","scoring_system":"epss","scoring_elements":"0.80482","published_at":"2026-04-26T12:55:00Z"},{"value":"0.014","scoring_system":"epss","scoring_elements":"0.80475","published_at":"2026-04-24T12:55:00Z"},{"value":"0.014","scoring_system":"epss","scoring_elements":"0.80449","published_at":"2026-04-21T12:55:00Z"},{"value":"0.014","scoring_system":"epss","scoring_elements":"0.80446","published_at":"2026-04-18T12:55:00Z"},{"value":"0.014","scoring_system":"epss","scoring_elements":"0.80444","published_at":"2026-04-16T12:55:00Z"},{"value":"0.014","scoring_system":"epss","scoring_elements":"0.80515","published_at":"2026-05-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-37454"},{"reference_url":"https://csrc.nist.gov/projects/hash-functions/sha-3-project","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/"}],"url":"https://csrc.nist.gov/projects/hash-functions/sha-3-project"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31628","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31628"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31629","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31629"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31630","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31630"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37454","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37454"},{"reference_url":"https://eprint.iacr.org/2023/331","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/"}],"url":"https://eprint.iacr.org/2023/331"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/johanns/sha3/commit/5f2e8118a62831911703c8753ff2435c3b5d7312","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/johanns/sha3/commit/5f2e8118a62831911703c8753ff2435c3b5d7312"},{"reference_url":"https://github.com/johanns/sha3/issues/17","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/johanns/sha3/issues/17"},{"reference_url":"https://github.com/rubysec/ruby-advisory-db/blob/master/gems/sha3/CVE-2022-37454.yml","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/rubysec/ruby-advisory-db/blob/master/gems/sha3/CVE-2022-37454.yml"},{"reference_url":"https://github.com/tiran/pysha3/issues/29","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/tiran/pysha3/issues/29"},{"reference_url":"https://github.com/XKCP/XKCP/commit/fdc6fef075f4e81d6b1bc38364248975e08e340a","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/XKCP/XKCP/commit/fdc6fef075f4e81d6b1bc38364248975e08e340a"},{"reference_url":"https://github.com/XKCP/XKCP/issues/105","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/XKCP/XKCP/issues/105"},{"reference_url":"https://github.com/XKCP/XKCP/security/advisories/GHSA-6w4m-2xhg-2658","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3","scoring_elements":""},{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/"}],"url":"https://github.com/XKCP/XKCP/security/advisories/GHSA-6w4m-2xhg-2658"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2022/10/msg00041.html","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2022/10/msg00041.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2022/11/msg00000.html","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2022/11/msg00000.html"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ALQ6BDDPX5HU5YBQOBMDVAA2TSGDKIJ","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ALQ6BDDPX5HU5YBQOBMDVAA2TSGDKIJ"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ALQ6BDDPX5HU5YBQOBMDVAA2TSGDKIJ/","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ALQ6BDDPX5HU5YBQOBMDVAA2TSGDKIJ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CMIEXLMTW5GO36HTFFWIPB3OHZXCT3G4","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CMIEXLMTW5GO36HTFFWIPB3OHZXCT3G4"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CMIEXLMTW5GO36HTFFWIPB3OHZXCT3G4/","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CMIEXLMTW5GO36HTFFWIPB3OHZXCT3G4/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3ALQ6BDDPX5HU5YBQOBMDVAA2TSGDKIJ","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3ALQ6BDDPX5HU5YBQOBMDVAA2TSGDKIJ"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3ALQ6BDDPX5HU5YBQOBMDVAA2TSGDKIJ/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3ALQ6BDDPX5HU5YBQOBMDVAA2TSGDKIJ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CMIEXLMTW5GO36HTFFWIPB3OHZXCT3G4","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CMIEXLMTW5GO36HTFFWIPB3OHZXCT3G4"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CMIEXLMTW5GO36HTFFWIPB3OHZXCT3G4/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CMIEXLMTW5GO36HTFFWIPB3OHZXCT3G4/"},{"reference_url":"https://mouha.be/sha-3-buffer-overflow","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mouha.be/sha-3-buffer-overflow"},{"reference_url":"https://mouha.be/sha-3-buffer-overflow/","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/"}],"url":"https://mouha.be/sha-3-buffer-overflow/"},{"reference_url":"https://news.ycombinator.com/item?id=33281106","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/"}],"url":"https://news.ycombinator.com/item?id=33281106"},{"reference_url":"https://news.ycombinator.com/item?id=35050307","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/"}],"url":"https://news.ycombinator.com/item?id=35050307"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-37454","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-37454"},{"reference_url":"https://security.gentoo.org/glsa/202305-02","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/"}],"url":"https://security.gentoo.org/glsa/202305-02"},{"reference_url":"https://www.debian.org/security/2022/dsa-5267","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/"}],"url":"https://www.debian.org/security/2022/dsa-5267"},{"reference_url":"https://www.debian.org/security/2022/dsa-5269","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/"}],"url":"https://www.debian.org/security/2022/dsa-5269"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1023030","reference_id":"1023030","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1023030"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2140200","reference_id":"2140200","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2140200"},{"reference_url":"https://github.com/advisories/GHSA-6w4m-2xhg-2658","reference_id":"GHSA-6w4m-2xhg-2658","reference_type":"","scores":[{"value":"CRITICAL","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-6w4m-2xhg-2658"},{"reference_url":"https://security.gentoo.org/glsa/202211-03","reference_id":"GLSA-202211-03","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202211-03"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0848","reference_id":"RHSA-2023:0848","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0848"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0965","reference_id":"RHSA-2023:0965","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0965"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2417","reference_id":"RHSA-2023:2417","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2417"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2903","reference_id":"RHSA-2023:2903","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2903"},{"reference_url":"https://usn.ubuntu.com/5717-1/","reference_id":"USN-5717-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5717-1/"},{"reference_url":"https://usn.ubuntu.com/5767-1/","reference_id":"USN-5767-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5767-1/"},{"reference_url":"https://usn.ubuntu.com/5767-3/","reference_id":"USN-5767-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5767-3/"},{"reference_url":"https://usn.ubuntu.com/5888-1/","reference_id":"USN-5888-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5888-1/"},{"reference_url":"https://usn.ubuntu.com/5930-1/","reference_id":"USN-5930-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5930-1/"},{"reference_url":"https://usn.ubuntu.com/5931-1/","reference_id":"USN-5931-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5931-1/"},{"reference_url":"https://usn.ubuntu.com/6524-1/","reference_id":"USN-6524-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6524-1/"},{"reference_url":"https://usn.ubuntu.com/6525-1/","reference_id":"USN-6525-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6525-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/995139?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-29cz-9gkc-1bfx"},{"vulnerability":"VCID-2shb-2cvn-dyd2"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4gsg-5e6s-63g4"},{"vulnerability":"VCID-4z89-3tfk-pyge"},{"vulnerability":"VCID-7ka5-7jrn-dber"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-dexx-3ssz-nqfg"},{"vulnerability":"VCID-e6rs-jwvu-jycd"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-h7z2-vc14-nfhq"},{"vulnerability":"VCID-js5p-py72-2kga"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qqh6-evfk-1fgy"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-tbuw-2msj-tqd9"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-vpwj-d49q-1uh8"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2"}],"aliases":["CVE-2022-37454","GHSA-6w4m-2xhg-2658"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ewbq-2gm8-tyf5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/50259?format=json","vulnerability_id":"VCID-gvgx-eq9r-d3d2","summary":"Multiple vulnerabilities have been found in Python, the worst of\n    which could result in the arbitrary execution of code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-26116.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-26116.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-26116","reference_id":"","reference_type":"","scores":[{"value":"0.00903","scoring_system":"epss","scoring_elements":"0.75643","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00903","scoring_system":"epss","scoring_elements":"0.75645","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00903","scoring_system":"epss","scoring_elements":"0.75676","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00903","scoring_system":"epss","scoring_elements":"0.75655","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00903","scoring_system":"epss","scoring_elements":"0.7569","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00903","scoring_system":"epss","scoring_elements":"0.757","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00903","scoring_system":"epss","scoring_elements":"0.75725","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00903","scoring_system":"epss","scoring_elements":"0.75706","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00903","scoring_system":"epss","scoring_elements":"0.75699","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00903","scoring_system":"epss","scoring_elements":"0.75792","published_at":"2026-05-05T12:55:00Z"},{"value":"0.01017","scoring_system":"epss","scoring_elements":"0.7722","published_at":"2026-04-16T12:55:00Z"},{"value":"0.01017","scoring_system":"epss","scoring_elements":"0.77222","published_at":"2026-04-18T12:55:00Z"},{"value":"0.01017","scoring_system":"epss","scoring_elements":"0.77213","published_at":"2026-04-21T12:55:00Z"},{"value":"0.01017","scoring_system":"epss","scoring_elements":"0.77248","published_at":"2026-04-24T12:55:00Z"},{"value":"0.01017","scoring_system":"epss","scoring_elements":"0.77254","published_at":"2026-04-26T12:55:00Z"},{"value":"0.01017","scoring_system":"epss","scoring_elements":"0.77269","published_at":"2026-04-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-26116"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26116","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26116"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1883014","reference_id":"1883014","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1883014"},{"reference_url":"https://security.gentoo.org/glsa/202101-18","reference_id":"GLSA-202101-18","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202101-18"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4273","reference_id":"RHSA-2020:4273","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4273"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4285","reference_id":"RHSA-2020:4285","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4285"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4299","reference_id":"RHSA-2020:4299","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4299"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1633","reference_id":"RHSA-2021:1633","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1633"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1761","reference_id":"RHSA-2021:1761","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1761"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1879","reference_id":"RHSA-2021:1879","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1879"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3366","reference_id":"RHSA-2021:3366","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3366"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:5235","reference_id":"RHSA-2022:5235","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:5235"},{"reference_url":"https://usn.ubuntu.com/4581-1/","reference_id":"USN-4581-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4581-1/"},{"reference_url":"https://usn.ubuntu.com/4754-3/","reference_id":"USN-4754-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4754-3/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/995139?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-29cz-9gkc-1bfx"},{"vulnerability":"VCID-2shb-2cvn-dyd2"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4gsg-5e6s-63g4"},{"vulnerability":"VCID-4z89-3tfk-pyge"},{"vulnerability":"VCID-7ka5-7jrn-dber"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-dexx-3ssz-nqfg"},{"vulnerability":"VCID-e6rs-jwvu-jycd"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-h7z2-vc14-nfhq"},{"vulnerability":"VCID-js5p-py72-2kga"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qqh6-evfk-1fgy"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-tbuw-2msj-tqd9"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-vpwj-d49q-1uh8"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2"}],"aliases":["CVE-2020-26116"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gvgx-eq9r-d3d2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/79075?format=json","vulnerability_id":"VCID-h7z2-vc14-nfhq","summary":"python: int() type in PyLong_FromString() does not limit amount of digits converting text to int leading to DoS","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10735.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10735.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-10735","reference_id":"","reference_type":"","scores":[{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59653","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59724","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59731","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59716","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59685","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59705","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59693","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59707","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59726","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.5971","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00384","scoring_system":"epss","scoring_elements":"0.59691","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00395","scoring_system":"epss","scoring_elements":"0.60314","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00395","scoring_system":"epss","scoring_elements":"0.60339","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00395","scoring_system":"epss","scoring_elements":"0.60307","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00395","scoring_system":"epss","scoring_elements":"0.60237","published_at":"2026-04-01T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-10735"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10735","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10735"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1834423","reference_id":"1834423","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1834423"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:6766","reference_id":"RHSA-2022:6766","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:6766"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7323","reference_id":"RHSA-2022:7323","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7323"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0833","reference_id":"RHSA-2023:0833","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0833"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2763","reference_id":"RHSA-2023:2763","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2763"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2764","reference_id":"RHSA-2023:2764","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2764"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0430","reference_id":"RHSA-2024:0430","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0430"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/994362?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3"}],"aliases":["CVE-2020-10735"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-h7z2-vc14-nfhq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/79859?format=json","vulnerability_id":"VCID-j8hj-k7wy-yfch","summary":"python: ftplib should not use the host from the PASV response","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4189.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4189.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-4189","reference_id":"","reference_type":"","scores":[{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.77704","published_at":"2026-05-05T12:55:00Z"},{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.77547","published_at":"2026-04-01T12:55:00Z"},{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.77554","published_at":"2026-04-02T12:55:00Z"},{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.7758","published_at":"2026-04-04T12:55:00Z"},{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.7756","published_at":"2026-04-07T12:55:00Z"},{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.7759","published_at":"2026-04-08T12:55:00Z"},{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.77597","published_at":"2026-04-09T12:55:00Z"},{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.77624","published_at":"2026-04-11T12:55:00Z"},{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.77608","published_at":"2026-04-12T12:55:00Z"},{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.77607","published_at":"2026-04-13T12:55:00Z"},{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.77644","published_at":"2026-04-16T12:55:00Z"},{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.77642","published_at":"2026-04-18T12:55:00Z"},{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.77637","published_at":"2026-04-21T12:55:00Z"},{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.77668","published_at":"2026-04-24T12:55:00Z"},{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.77676","published_at":"2026-04-26T12:55:00Z"},{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.77691","published_at":"2026-04-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-4189"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4189","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4189"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/commit/0ab152c6b5d95caa2dc1a30fa96e10258b5f188e","reference_id":"0ab152c6b5d95caa2dc1a30fa96e10258b5f188e","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-25T14:59:42Z/"}],"url":"https://github.com/python/cpython/commit/0ab152c6b5d95caa2dc1a30fa96e10258b5f188e"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2036020","reference_id":"2036020","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-25T14:59:42Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2036020"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2021-4189","reference_id":"CVE-2021-4189","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-25T14:59:42Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2021-4189"},{"reference_url":"https://security-tracker.debian.org/tracker/CVE-2021-4189","reference_id":"CVE-2021-4189","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-25T14:59:42Z/"}],"url":"https://security-tracker.debian.org/tracker/CVE-2021-4189"},{"reference_url":"https://python-security.readthedocs.io/vuln/ftplib-pasv.html","reference_id":"ftplib-pasv.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-25T14:59:42Z/"}],"url":"https://python-security.readthedocs.io/vuln/ftplib-pasv.html"},{"reference_url":"https://bugs.python.org/issue43285","reference_id":"issue43285","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-25T14:59:42Z/"}],"url":"https://bugs.python.org/issue43285"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/05/msg00024.html","reference_id":"msg00024.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-25T14:59:42Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/05/msg00024.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html","reference_id":"msg00039.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-25T14:59:42Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20221104-0004/","reference_id":"ntap-20221104-0004","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-25T14:59:42Z/"}],"url":"https://security.netapp.com/advisory/ntap-20221104-0004/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1663","reference_id":"RHSA-2022:1663","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1663"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1821","reference_id":"RHSA-2022:1821","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1821"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1986","reference_id":"RHSA-2022:1986","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1986"},{"reference_url":"https://usn.ubuntu.com/5342-1/","reference_id":"USN-5342-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5342-1/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"},{"reference_url":"https://usn.ubuntu.com/USN-5342-2/","reference_id":"USN-USN-5342-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/USN-5342-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/995139?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-29cz-9gkc-1bfx"},{"vulnerability":"VCID-2shb-2cvn-dyd2"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4gsg-5e6s-63g4"},{"vulnerability":"VCID-4z89-3tfk-pyge"},{"vulnerability":"VCID-7ka5-7jrn-dber"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-dexx-3ssz-nqfg"},{"vulnerability":"VCID-e6rs-jwvu-jycd"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-h7z2-vc14-nfhq"},{"vulnerability":"VCID-js5p-py72-2kga"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qqh6-evfk-1fgy"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-tbuw-2msj-tqd9"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-vpwj-d49q-1uh8"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2"}],"aliases":["CVE-2021-4189"],"risk_score":2.4,"exploitability":"0.5","weighted_severity":"4.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-j8hj-k7wy-yfch"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42644?format=json","vulnerability_id":"VCID-js5p-py72-2kga","summary":"Multiple vulberabilities have been discovered in Python and PyPy3, the worst of which can lead to privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0450.json","reference_id":"","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0450.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-0450","reference_id":"","reference_type":"","scores":[{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35454","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35411","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35409","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35384","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35338","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35429","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.34861","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.34983","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35072","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35093","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35328","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.3538","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35392","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35352","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00148","scoring_system":"epss","scoring_elements":"0.35374","published_at":"2026-04-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-0450"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0450","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0450"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1070133","reference_id":"1070133","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1070133"},{"reference_url":"https://github.com/python/cpython/issues/109858","reference_id":"109858","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://github.com/python/cpython/issues/109858"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2276525","reference_id":"2276525","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2276525"},{"reference_url":"https://github.com/python/cpython/commit/30fe5d853b56138dbec62432d370a1f99409fc85","reference_id":"30fe5d853b56138dbec62432d370a1f99409fc85","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://github.com/python/cpython/commit/30fe5d853b56138dbec62432d370a1f99409fc85"},{"reference_url":"http://www.openwall.com/lists/oss-security/2024/03/20/5","reference_id":"5","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"http://www.openwall.com/lists/oss-security/2024/03/20/5"},{"reference_url":"https://github.com/python/cpython/commit/66363b9a7b9fe7c99eba3a185b74c5fdbf842eba","reference_id":"66363b9a7b9fe7c99eba3a185b74c5fdbf842eba","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://github.com/python/cpython/commit/66363b9a7b9fe7c99eba3a185b74c5fdbf842eba"},{"reference_url":"https://github.com/python/cpython/commit/70497218351ba44bffc8b571201ecb5652d84675","reference_id":"70497218351ba44bffc8b571201ecb5652d84675","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://github.com/python/cpython/commit/70497218351ba44bffc8b571201ecb5652d84675"},{"reference_url":"https://github.com/python/cpython/commit/a2c59992e9e8d35baba9695eb186ad6c6ff85c51","reference_id":"a2c59992e9e8d35baba9695eb186ad6c6ff85c51","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://github.com/python/cpython/commit/a2c59992e9e8d35baba9695eb186ad6c6ff85c51"},{"reference_url":"https://github.com/python/cpython/commit/a956e510f6336d5ae111ba429a61c3ade30a7549","reference_id":"a956e510f6336d5ae111ba429a61c3ade30a7549","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://github.com/python/cpython/commit/a956e510f6336d5ae111ba429a61c3ade30a7549"},{"reference_url":"https://github.com/python/cpython/commit/d05bac0b74153beb541b88b4fca33bf053990183","reference_id":"d05bac0b74153beb541b88b4fca33bf053990183","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://github.com/python/cpython/commit/d05bac0b74153beb541b88b4fca33bf053990183"},{"reference_url":"https://github.com/python/cpython/commit/fa181fcf2156f703347b03a3b1966ce47be8ab3b","reference_id":"fa181fcf2156f703347b03a3b1966ce47be8ab3b","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://github.com/python/cpython/commit/fa181fcf2156f703347b03a3b1966ce47be8ab3b"},{"reference_url":"https://security.gentoo.org/glsa/202405-01","reference_id":"GLSA-202405-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202405-01"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2024/03/msg00024.html","reference_id":"msg00024.html","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2024/03/msg00024.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2024/03/msg00025.html","reference_id":"msg00025.html","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2024/03/msg00025.html"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3347","reference_id":"RHSA-2024:3347","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3347"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3391","reference_id":"RHSA-2024:3391","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3391"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3466","reference_id":"RHSA-2024:3466","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3466"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4058","reference_id":"RHSA-2024:4058","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4058"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4078","reference_id":"RHSA-2024:4078","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4078"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4243","reference_id":"RHSA-2024:4243","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4243"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4406","reference_id":"RHSA-2024:4406","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4406"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9190","reference_id":"RHSA-2024:9190","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:9190"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9192","reference_id":"RHSA-2024:9192","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:9192"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T3IGRX54M7RNCQOXVQO5KQKTGWCOABIM/","reference_id":"T3IGRX54M7RNCQOXVQO5KQKTGWCOABIM","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T3IGRX54M7RNCQOXVQO5KQKTGWCOABIM/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U5VHWS52HGD743C47UMCSAK2A773M2YE/","reference_id":"U5VHWS52HGD743C47UMCSAK2A773M2YE","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U5VHWS52HGD743C47UMCSAK2A773M2YE/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"},{"reference_url":"https://usn.ubuntu.com/7212-1/","reference_id":"USN-7212-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7212-1/"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/XELNUX2L3IOHBTFU7RQHCY6OUVEWZ2FG/","reference_id":"XELNUX2L3IOHBTFU7RQHCY6OUVEWZ2FG","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/XELNUX2L3IOHBTFU7RQHCY6OUVEWZ2FG/"},{"reference_url":"https://www.bamsoftware.com/hacks/zipbomb/","reference_id":"zipbomb","reference_type":"","scores":[{"value":"6.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/"}],"url":"https://www.bamsoftware.com/hacks/zipbomb/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/994362?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3"}],"aliases":["CVE-2024-0450"],"risk_score":2.8,"exploitability":"0.5","weighted_severity":"5.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-js5p-py72-2kga"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/38959?format=json","vulnerability_id":"VCID-qqh6-evfk-1fgy","summary":"Multiple vulnerabilities have been found in Python and PyPy, the worst of which could result in arbitrary code execution.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-45061.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-45061.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-45061","reference_id":"","reference_type":"","scores":[{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.29338","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.29304","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.29387","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.292","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.29236","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.29209","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.29262","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.29308","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.29264","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00124","scoring_system":"epss","scoring_elements":"0.31224","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00124","scoring_system":"epss","scoring_elements":"0.3135","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00124","scoring_system":"epss","scoring_elements":"0.31557","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00124","scoring_system":"epss","scoring_elements":"0.31524","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00124","scoring_system":"epss","scoring_elements":"0.31146","published_at":"2026-04-29T12:55:00Z"},{"value":"0.0013","scoring_system":"epss","scoring_elements":"0.31964","published_at":"2026-05-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-45061"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-45061","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-45061"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2144072","reference_id":"2144072","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2144072"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2AOUKI72ACV6CHY2QUFO6VK2DNMVJ2MB/","reference_id":"2AOUKI72ACV6CHY2QUFO6VK2DNMVJ2MB","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2AOUKI72ACV6CHY2QUFO6VK2DNMVJ2MB/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/35YDIWCUMWTMDBWFRAVENFH6BLB65D6S/","reference_id":"35YDIWCUMWTMDBWFRAVENFH6BLB65D6S","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/35YDIWCUMWTMDBWFRAVENFH6BLB65D6S/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4WBZJNSALFGMPYTINIF57HAAK46U72WQ/","reference_id":"4WBZJNSALFGMPYTINIF57HAAK46U72WQ","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4WBZJNSALFGMPYTINIF57HAAK46U72WQ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/63FS6VHY4DCS74HBTEINUDOECQ2X6ZCH/","reference_id":"63FS6VHY4DCS74HBTEINUDOECQ2X6ZCH","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/63FS6VHY4DCS74HBTEINUDOECQ2X6ZCH/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7WQPHKGNXUJC3TC3BDW5RKGROWRJVSFR/","reference_id":"7WQPHKGNXUJC3TC3BDW5RKGROWRJVSFR","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7WQPHKGNXUJC3TC3BDW5RKGROWRJVSFR/"},{"reference_url":"https://github.com/python/cpython/issues/98433","reference_id":"98433","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://github.com/python/cpython/issues/98433"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B3YI6JYARWU6GULWOHNUROSACT54XFFS/","reference_id":"B3YI6JYARWU6GULWOHNUROSACT54XFFS","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B3YI6JYARWU6GULWOHNUROSACT54XFFS/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B4MYQ3IV6NWA4CKSXEHW45CH2YNDHEPH/","reference_id":"B4MYQ3IV6NWA4CKSXEHW45CH2YNDHEPH","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B4MYQ3IV6NWA4CKSXEHW45CH2YNDHEPH/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BWJREJHWVRBYDP43YB5WRL3QC7UBA7BR/","reference_id":"BWJREJHWVRBYDP43YB5WRL3QC7UBA7BR","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BWJREJHWVRBYDP43YB5WRL3QC7UBA7BR/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GTPVDZDATRQFE6KAT6B4BQIQ4GRHIIIJ/","reference_id":"GTPVDZDATRQFE6KAT6B4BQIQ4GRHIIIJ","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GTPVDZDATRQFE6KAT6B4BQIQ4GRHIIIJ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IN26PWZTYG6IF3APLRXQJBVACQHZUPT2/","reference_id":"IN26PWZTYG6IF3APLRXQJBVACQHZUPT2","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IN26PWZTYG6IF3APLRXQJBVACQHZUPT2/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JCDJXNBHWXNYUTOEV4H2HCFSRKV3SYL3/","reference_id":"JCDJXNBHWXNYUTOEV4H2HCFSRKV3SYL3","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JCDJXNBHWXNYUTOEV4H2HCFSRKV3SYL3/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JTYVESWVBPD57ZJC35G5722Q6TS37WSB/","reference_id":"JTYVESWVBPD57ZJC35G5722Q6TS37WSB","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JTYVESWVBPD57ZJC35G5722Q6TS37WSB/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KNE4GMD45RGC2HWUAAIGTDHT5VJ2E4O4/","reference_id":"KNE4GMD45RGC2HWUAAIGTDHT5VJ2E4O4","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KNE4GMD45RGC2HWUAAIGTDHT5VJ2E4O4/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LKWAMPURWUV3DCCT4J7VHRF4NT2CFVBR/","reference_id":"LKWAMPURWUV3DCCT4J7VHRF4NT2CFVBR","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LKWAMPURWUV3DCCT4J7VHRF4NT2CFVBR/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/05/msg00024.html","reference_id":"msg00024.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/05/msg00024.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html","reference_id":"msg00039.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20221209-0007/","reference_id":"ntap-20221209-0007","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://security.netapp.com/advisory/ntap-20221209-0007/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O67LRHDTJWH544KXB6KY4HMHQLYDXFPK/","reference_id":"O67LRHDTJWH544KXB6KY4HMHQLYDXFPK","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O67LRHDTJWH544KXB6KY4HMHQLYDXFPK/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ORVCQGJCCAVLN4DJDTWGREFCUWXKQRML/","reference_id":"ORVCQGJCCAVLN4DJDTWGREFCUWXKQRML","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ORVCQGJCCAVLN4DJDTWGREFCUWXKQRML/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PLQ2BNZVBBAQPV3SPRU24ZD37UYJJS7W/","reference_id":"PLQ2BNZVBBAQPV3SPRU24ZD37UYJJS7W","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PLQ2BNZVBBAQPV3SPRU24ZD37UYJJS7W/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QCKD4AFBHXIMHS64ZER2U7QRT33HNE7L/","reference_id":"QCKD4AFBHXIMHS64ZER2U7QRT33HNE7L","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QCKD4AFBHXIMHS64ZER2U7QRT33HNE7L/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QLUGZSEAO3MBWGKCUSMKQIRYJZKJCIOB/","reference_id":"QLUGZSEAO3MBWGKCUSMKQIRYJZKJCIOB","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QLUGZSEAO3MBWGKCUSMKQIRYJZKJCIOB/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RDK3ZZBRYFO47ET3N4BNTKVXN47U6ICY/","reference_id":"RDK3ZZBRYFO47ET3N4BNTKVXN47U6ICY","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RDK3ZZBRYFO47ET3N4BNTKVXN47U6ICY/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RH57BNT4VQERGEJ5SXNXSVMDYP66YD4H/","reference_id":"RH57BNT4VQERGEJ5SXNXSVMDYP66YD4H","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RH57BNT4VQERGEJ5SXNXSVMDYP66YD4H/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0833","reference_id":"RHSA-2023:0833","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0833"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0953","reference_id":"RHSA-2023:0953","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0953"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2763","reference_id":"RHSA-2023:2763","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2763"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2764","reference_id":"RHSA-2023:2764","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2764"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2860","reference_id":"RHSA-2023:2860","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2860"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6793","reference_id":"RHSA-2023:6793","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6793"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0430","reference_id":"RHSA-2024:0430","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0430"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RTN2OOLKYTG34DODUEJGT5MLC2PFGPBA/","reference_id":"RTN2OOLKYTG34DODUEJGT5MLC2PFGPBA","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RTN2OOLKYTG34DODUEJGT5MLC2PFGPBA/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T3D5TX4TDJPXHXD2QICKTY3OCQC3JARP/","reference_id":"T3D5TX4TDJPXHXD2QICKTY3OCQC3JARP","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T3D5TX4TDJPXHXD2QICKTY3OCQC3JARP/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UHVW73QZJMHA4MK7JBT7CXX7XSNYQEGF/","reference_id":"UHVW73QZJMHA4MK7JBT7CXX7XSNYQEGF","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UHVW73QZJMHA4MK7JBT7CXX7XSNYQEGF/"},{"reference_url":"https://usn.ubuntu.com/5767-1/","reference_id":"USN-5767-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5767-1/"},{"reference_url":"https://usn.ubuntu.com/5767-2/","reference_id":"USN-5767-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5767-2/"},{"reference_url":"https://usn.ubuntu.com/5888-1/","reference_id":"USN-5888-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5888-1/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"},{"reference_url":"https://usn.ubuntu.com/7212-1/","reference_id":"USN-7212-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7212-1/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VCMDX6IFKLOA3NXUQEV524L5LHTPI2JI/","reference_id":"VCMDX6IFKLOA3NXUQEV524L5LHTPI2JI","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VCMDX6IFKLOA3NXUQEV524L5LHTPI2JI/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X3EJ6J7PXVQOULBQZQGBXCXY6LFF6LZD/","reference_id":"X3EJ6J7PXVQOULBQZQGBXCXY6LFF6LZD","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X3EJ6J7PXVQOULBQZQGBXCXY6LFF6LZD/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XXZJL3CNAFS5PAIR7K4RL62S3Y7THR7O/","reference_id":"XXZJL3CNAFS5PAIR7K4RL62S3Y7THR7O","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XXZJL3CNAFS5PAIR7K4RL62S3Y7THR7O/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YPNWZKXPKTNHS5FVMN7UQZ2UPCSEFJUK/","reference_id":"YPNWZKXPKTNHS5FVMN7UQZ2UPCSEFJUK","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YPNWZKXPKTNHS5FVMN7UQZ2UPCSEFJUK/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZB5YCMIRVX35RUB6XPOWKENCVCJEVDRK/","reference_id":"ZB5YCMIRVX35RUB6XPOWKENCVCJEVDRK","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZB5YCMIRVX35RUB6XPOWKENCVCJEVDRK/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/994362?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3"}],"aliases":["CVE-2022-45061"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qqh6-evfk-1fgy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/72803?format=json","vulnerability_id":"VCID-smck-sdx2-c7du","summary":"python: Improper validation of IPv6 and IPvFuture addresses","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-11168.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-11168.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-11168","reference_id":"","reference_type":"","scores":[{"value":"0.00475","scoring_system":"epss","scoring_elements":"0.64815","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00475","scoring_system":"epss","scoring_elements":"0.64801","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00475","scoring_system":"epss","scoring_elements":"0.64751","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00517","scoring_system":"epss","scoring_elements":"0.66749","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00517","scoring_system":"epss","scoring_elements":"0.6672","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00517","scoring_system":"epss","scoring_elements":"0.66762","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00552","scoring_system":"epss","scoring_elements":"0.68091","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00552","scoring_system":"epss","scoring_elements":"0.67987","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00552","scoring_system":"epss","scoring_elements":"0.68006","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00552","scoring_system":"epss","scoring_elements":"0.68116","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00602","scoring_system":"epss","scoring_elements":"0.69586","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00602","scoring_system":"epss","scoring_elements":"0.69594","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00602","scoring_system":"epss","scoring_elements":"0.69544","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00602","scoring_system":"epss","scoring_elements":"0.69553","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00602","scoring_system":"epss","scoring_elements":"0.69534","published_at":"2026-04-21T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-11168"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-11168","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-11168"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/issues/103848","reference_id":"103848","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/AU:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-13T15:09:42Z/"}],"url":"https://github.com/python/cpython/issues/103848"},{"reference_url":"https://github.com/python/cpython/pull/103849","reference_id":"103849","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/AU:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-13T15:09:42Z/"}],"url":"https://github.com/python/cpython/pull/103849"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2325776","reference_id":"2325776","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2325776"},{"reference_url":"https://github.com/python/cpython/commit/29f348e232e82938ba2165843c448c2b291504c5","reference_id":"29f348e232e82938ba2165843c448c2b291504c5","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/AU:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-13T15:09:42Z/"}],"url":"https://github.com/python/cpython/commit/29f348e232e82938ba2165843c448c2b291504c5"},{"reference_url":"https://github.com/python/cpython/commit/634ded45545ce8cbd6fd5d49785613dd7fa9b89e","reference_id":"634ded45545ce8cbd6fd5d49785613dd7fa9b89e","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/AU:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-13T15:09:42Z/"}],"url":"https://github.com/python/cpython/commit/634ded45545ce8cbd6fd5d49785613dd7fa9b89e"},{"reference_url":"https://github.com/python/cpython/commit/b2171a2fd41416cf68afd67460578631d755a550","reference_id":"b2171a2fd41416cf68afd67460578631d755a550","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/AU:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-13T15:09:42Z/"}],"url":"https://github.com/python/cpython/commit/b2171a2fd41416cf68afd67460578631d755a550"},{"reference_url":"https://github.com/python/cpython/commit/ddca2953191c67a12b1f19d6bca41016c6ae7132","reference_id":"ddca2953191c67a12b1f19d6bca41016c6ae7132","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/AU:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-13T15:09:42Z/"}],"url":"https://github.com/python/cpython/commit/ddca2953191c67a12b1f19d6bca41016c6ae7132"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:10779","reference_id":"RHSA-2024:10779","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:10779"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:10983","reference_id":"RHSA-2024:10983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:10983"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23530","reference_id":"RHSA-2025:23530","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23530"},{"reference_url":"https://usn.ubuntu.com/7218-1/","reference_id":"USN-7218-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7218-1/"},{"reference_url":"https://usn.ubuntu.com/7280-3/","reference_id":"USN-7280-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7280-3/"},{"reference_url":"https://usn.ubuntu.com/7348-1/","reference_id":"USN-7348-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7348-1/"},{"reference_url":"https://usn.ubuntu.com/7488-1/","reference_id":"USN-7488-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7488-1/"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/XPWB6XVZ5G5KGEI63M4AWLIEUF5BPH4T/","reference_id":"XPWB6XVZ5G5KGEI63M4AWLIEUF5BPH4T","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/AU:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-13T15:09:42Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/XPWB6XVZ5G5KGEI63M4AWLIEUF5BPH4T/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/994362?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3"},{"url":"http://public2.vulnerablecode.io/api/packages/994363?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2"}],"aliases":["CVE-2024-11168"],"risk_score":2.9,"exploitability":"0.5","weighted_severity":"5.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-smck-sdx2-c7du"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/73076?format=json","vulnerability_id":"VCID-tbuw-2msj-tqd9","summary":"python: Virtual environment (venv) activation scripts don't quote paths","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-9287.json","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:L/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-9287.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-9287","reference_id":"","reference_type":"","scores":[{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.19061","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.19545","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.19591","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.19167","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.19944","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.1976","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.19864","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.19866","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.19862","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.19753","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.19885","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.19835","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.19915","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.19969","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.19987","published_at":"2026-04-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-9287"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-9287","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-9287"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1089117","reference_id":"1089117","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1089117"},{"reference_url":"https://github.com/python/cpython/issues/124651","reference_id":"124651","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/"}],"url":"https://github.com/python/cpython/issues/124651"},{"reference_url":"https://github.com/python/cpython/pull/124712","reference_id":"124712","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/"}],"url":"https://github.com/python/cpython/pull/124712"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2321440","reference_id":"2321440","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2321440"},{"reference_url":"https://github.com/python/cpython/commit/633555735a023d3e4d92ba31da35b1205f9ecbd7","reference_id":"633555735a023d3e4d92ba31da35b1205f9ecbd7","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/"}],"url":"https://github.com/python/cpython/commit/633555735a023d3e4d92ba31da35b1205f9ecbd7"},{"reference_url":"https://github.com/python/cpython/commit/8450b2482586857d689b6658f08de9c8179af7db","reference_id":"8450b2482586857d689b6658f08de9c8179af7db","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/"}],"url":"https://github.com/python/cpython/commit/8450b2482586857d689b6658f08de9c8179af7db"},{"reference_url":"https://github.com/python/cpython/commit/9286ab3a107ea41bd3f3c3682ce2512692bdded8","reference_id":"9286ab3a107ea41bd3f3c3682ce2512692bdded8","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/"}],"url":"https://github.com/python/cpython/commit/9286ab3a107ea41bd3f3c3682ce2512692bdded8"},{"reference_url":"https://github.com/python/cpython/commit/ae961ae94bf19c8f8c7fbea3d1c25cc55ce8ae97","reference_id":"ae961ae94bf19c8f8c7fbea3d1c25cc55ce8ae97","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/"}],"url":"https://github.com/python/cpython/commit/ae961ae94bf19c8f8c7fbea3d1c25cc55ce8ae97"},{"reference_url":"https://github.com/python/cpython/commit/d48cc82ed25e26b02eb97c6263d95dcaa1e9111b","reference_id":"d48cc82ed25e26b02eb97c6263d95dcaa1e9111b","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/"}],"url":"https://github.com/python/cpython/commit/d48cc82ed25e26b02eb97c6263d95dcaa1e9111b"},{"reference_url":"https://github.com/python/cpython/commit/e52095a0c1005a87eed2276af7a1f2f66e2b6483","reference_id":"e52095a0c1005a87eed2276af7a1f2f66e2b6483","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/"}],"url":"https://github.com/python/cpython/commit/e52095a0c1005a87eed2276af7a1f2f66e2b6483"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:10779","reference_id":"RHSA-2024:10779","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:10779"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:10978","reference_id":"RHSA-2024:10978","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:10978"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:10979","reference_id":"RHSA-2024:10979","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:10979"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:10980","reference_id":"RHSA-2024:10980","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:10980"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:10983","reference_id":"RHSA-2024:10983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:10983"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:11024","reference_id":"RHSA-2024:11024","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:11024"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:11035","reference_id":"RHSA-2024:11035","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:11035"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:11111","reference_id":"RHSA-2024:11111","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:11111"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:0280","reference_id":"RHSA-2025:0280","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:0280"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23530","reference_id":"RHSA-2025:23530","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23530"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/RSPJ2B5JL22FG3TKUJ7D7DQ4N5JRRBZL/","reference_id":"RSPJ2B5JL22FG3TKUJ7D7DQ4N5JRRBZL","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/RSPJ2B5JL22FG3TKUJ7D7DQ4N5JRRBZL/"},{"reference_url":"https://usn.ubuntu.com/7116-1/","reference_id":"USN-7116-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7116-1/"},{"reference_url":"https://usn.ubuntu.com/7348-1/","reference_id":"USN-7348-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7348-1/"},{"reference_url":"https://usn.ubuntu.com/7488-1/","reference_id":"USN-7488-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7488-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/994362?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3"}],"aliases":["CVE-2024-9287"],"risk_score":2.9,"exploitability":"0.5","weighted_severity":"5.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-tbuw-2msj-tqd9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/50772?format=json","vulnerability_id":"VCID-tyk4-kazt-kydj","summary":"Multiple vulnerabilities have been found in Python, the worst of\n    which could result in a Denial of Service condition.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-20907.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-20907.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-20907","reference_id":"","reference_type":"","scores":[{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55257","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55355","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.5538","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55358","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55408","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55419","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55397","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55379","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55414","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55418","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55336","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55357","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55329","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55279","published_at":"2026-05-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-20907"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20907","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20907"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1856481","reference_id":"1856481","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1856481"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=970099","reference_id":"970099","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=970099"},{"reference_url":"https://security.gentoo.org/glsa/202008-01","reference_id":"GLSA-202008-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202008-01"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4273","reference_id":"RHSA-2020:4273","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4273"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4285","reference_id":"RHSA-2020:4285","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4285"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4299","reference_id":"RHSA-2020:4299","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4299"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4433","reference_id":"RHSA-2020:4433","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4433"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4641","reference_id":"RHSA-2020:4641","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4641"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4654","reference_id":"RHSA-2020:4654","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4654"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5009","reference_id":"RHSA-2020:5009","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5009"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5010","reference_id":"RHSA-2020:5010","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5010"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0528","reference_id":"RHSA-2021:0528","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0528"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0761","reference_id":"RHSA-2021:0761","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0761"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0881","reference_id":"RHSA-2021:0881","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0881"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0949","reference_id":"RHSA-2021:0949","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0949"},{"reference_url":"https://usn.ubuntu.com/4428-1/","reference_id":"USN-4428-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4428-1/"},{"reference_url":"https://usn.ubuntu.com/4754-3/","reference_id":"USN-4754-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4754-3/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/995139?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-29cz-9gkc-1bfx"},{"vulnerability":"VCID-2shb-2cvn-dyd2"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4gsg-5e6s-63g4"},{"vulnerability":"VCID-4z89-3tfk-pyge"},{"vulnerability":"VCID-7ka5-7jrn-dber"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-dexx-3ssz-nqfg"},{"vulnerability":"VCID-e6rs-jwvu-jycd"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-h7z2-vc14-nfhq"},{"vulnerability":"VCID-js5p-py72-2kga"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qqh6-evfk-1fgy"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-tbuw-2msj-tqd9"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-vpwj-d49q-1uh8"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2"}],"aliases":["CVE-2019-20907"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-tyk4-kazt-kydj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/31511?format=json","vulnerability_id":"VCID-v186-7sv1-ubej","summary":"Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-7592.json","reference_id":"","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-7592.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-7592","reference_id":"","reference_type":"","scores":[{"value":"0.00796","scoring_system":"epss","scoring_elements":"0.74054","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00796","scoring_system":"epss","scoring_elements":"0.73941","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00796","scoring_system":"epss","scoring_elements":"0.73966","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00796","scoring_system":"epss","scoring_elements":"0.74062","published_at":"2026-04-29T12:55:00Z"},{"value":"0.01018","scoring_system":"epss","scoring_elements":"0.77224","published_at":"2026-04-21T12:55:00Z"},{"value":"0.01018","scoring_system":"epss","scoring_elements":"0.77264","published_at":"2026-04-26T12:55:00Z"},{"value":"0.01018","scoring_system":"epss","scoring_elements":"0.77258","published_at":"2026-04-24T12:55:00Z"},{"value":"0.01018","scoring_system":"epss","scoring_elements":"0.77147","published_at":"2026-04-07T12:55:00Z"},{"value":"0.01018","scoring_system":"epss","scoring_elements":"0.77179","published_at":"2026-04-08T12:55:00Z"},{"value":"0.01018","scoring_system":"epss","scoring_elements":"0.77188","published_at":"2026-04-09T12:55:00Z"},{"value":"0.01018","scoring_system":"epss","scoring_elements":"0.77215","published_at":"2026-04-11T12:55:00Z"},{"value":"0.01018","scoring_system":"epss","scoring_elements":"0.77195","published_at":"2026-04-12T12:55:00Z"},{"value":"0.01018","scoring_system":"epss","scoring_elements":"0.77191","published_at":"2026-04-13T12:55:00Z"},{"value":"0.01018","scoring_system":"epss","scoring_elements":"0.77231","published_at":"2026-04-16T12:55:00Z"},{"value":"0.01018","scoring_system":"epss","scoring_elements":"0.77233","published_at":"2026-04-18T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-7592"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7592","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7592"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"2.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/python/cpython/issues/123067","reference_id":"123067","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/"}],"url":"https://github.com/python/cpython/issues/123067"},{"reference_url":"https://github.com/python/cpython/pull/123075","reference_id":"123075","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/"}],"url":"https://github.com/python/cpython/pull/123075"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2305879","reference_id":"2305879","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2305879"},{"reference_url":"https://github.com/python/cpython/commit/391e5626e3ee5af267b97e37abc7475732e67621","reference_id":"391e5626e3ee5af267b97e37abc7475732e67621","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/"}],"url":"https://github.com/python/cpython/commit/391e5626e3ee5af267b97e37abc7475732e67621"},{"reference_url":"https://github.com/python/cpython/commit/44e458357fca05ca0ae2658d62c8c595b048b5ef","reference_id":"44e458357fca05ca0ae2658d62c8c595b048b5ef","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/"}],"url":"https://github.com/python/cpython/commit/44e458357fca05ca0ae2658d62c8c595b048b5ef"},{"reference_url":"https://github.com/python/cpython/commit/a77ab24427a18bff817025adb03ca920dc3f1a06","reference_id":"a77ab24427a18bff817025adb03ca920dc3f1a06","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/"}],"url":"https://github.com/python/cpython/commit/a77ab24427a18bff817025adb03ca920dc3f1a06"},{"reference_url":"https://github.com/python/cpython/commit/b2f11ca7667e4d57c71c1c88b255115f16042d9a","reference_id":"b2f11ca7667e4d57c71c1c88b255115f16042d9a","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/"}],"url":"https://github.com/python/cpython/commit/b2f11ca7667e4d57c71c1c88b255115f16042d9a"},{"reference_url":"https://github.com/python/cpython/commit/d4ac921a4b081f7f996a5d2b101684b67ba0ed7f","reference_id":"d4ac921a4b081f7f996a5d2b101684b67ba0ed7f","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/"}],"url":"https://github.com/python/cpython/commit/d4ac921a4b081f7f996a5d2b101684b67ba0ed7f"},{"reference_url":"https://github.com/python/cpython/commit/d662e2db2605515a767f88ad48096b8ac623c774","reference_id":"d662e2db2605515a767f88ad48096b8ac623c774","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/"}],"url":"https://github.com/python/cpython/commit/d662e2db2605515a767f88ad48096b8ac623c774"},{"reference_url":"https://github.com/python/cpython/commit/dcc3eaef98cd94d6cb6cb0f44bd1c903d04f33b1","reference_id":"dcc3eaef98cd94d6cb6cb0f44bd1c903d04f33b1","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/"}],"url":"https://github.com/python/cpython/commit/dcc3eaef98cd94d6cb6cb0f44bd1c903d04f33b1"},{"reference_url":"https://security.gentoo.org/glsa/202506-07","reference_id":"GLSA-202506-07","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202506-07"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/HXJAAAALNUNGCQUS2W7WR6GFIZIHFOOK/","reference_id":"HXJAAAALNUNGCQUS2W7WR6GFIZIHFOOK","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/HXJAAAALNUNGCQUS2W7WR6GFIZIHFOOK/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:10983","reference_id":"RHSA-2024:10983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:10983"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:3631","reference_id":"RHSA-2025:3631","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:3631"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:3634","reference_id":"RHSA-2025:3634","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:3634"},{"reference_url":"https://usn.ubuntu.com/7015-1/","reference_id":"USN-7015-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7015-1/"},{"reference_url":"https://usn.ubuntu.com/7015-2/","reference_id":"USN-7015-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7015-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/994362?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3"},{"url":"http://public2.vulnerablecode.io/api/packages/994363?format=json","purl":"pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2"}],"aliases":["CVE-2024-7592"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-v186-7sv1-ubej"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/38909?format=json","vulnerability_id":"VCID-vpwj-d49q-1uh8","summary":"Multiple vulnerabilities have been found in Python and PyPy, the worst of which could result in arbitrary code execution.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0391.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0391.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0391","reference_id":"","reference_type":"","scores":[{"value":"0.01214","scoring_system":"epss","scoring_elements":"0.79099","published_at":"2026-05-05T12:55:00Z"},{"value":"0.01317","scoring_system":"epss","scoring_elements":"0.79815","published_at":"2026-04-02T12:55:00Z"},{"value":"0.01317","scoring_system":"epss","scoring_elements":"0.79886","published_at":"2026-04-18T12:55:00Z"},{"value":"0.01317","scoring_system":"epss","scoring_elements":"0.79807","published_at":"2026-04-01T12:55:00Z"},{"value":"0.01317","scoring_system":"epss","scoring_elements":"0.79918","published_at":"2026-04-24T12:55:00Z"},{"value":"0.01317","scoring_system":"epss","scoring_elements":"0.79835","published_at":"2026-04-04T12:55:00Z"},{"value":"0.01317","scoring_system":"epss","scoring_elements":"0.79823","published_at":"2026-04-07T12:55:00Z"},{"value":"0.01317","scoring_system":"epss","scoring_elements":"0.79852","published_at":"2026-04-08T12:55:00Z"},{"value":"0.01317","scoring_system":"epss","scoring_elements":"0.7986","published_at":"2026-04-09T12:55:00Z"},{"value":"0.01317","scoring_system":"epss","scoring_elements":"0.79882","published_at":"2026-04-11T12:55:00Z"},{"value":"0.01317","scoring_system":"epss","scoring_elements":"0.79865","published_at":"2026-04-12T12:55:00Z"},{"value":"0.01317","scoring_system":"epss","scoring_elements":"0.79857","published_at":"2026-04-13T12:55:00Z"},{"value":"0.01317","scoring_system":"epss","scoring_elements":"0.79885","published_at":"2026-04-16T12:55:00Z"},{"value":"0.01317","scoring_system":"epss","scoring_elements":"0.79889","published_at":"2026-04-21T12:55:00Z"},{"value":"0.01317","scoring_system":"epss","scoring_elements":"0.79941","published_at":"2026-04-29T12:55:00Z"},{"value":"0.01317","scoring_system":"epss","scoring_elements":"0.79924","published_at":"2026-04-26T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0391"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0391","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0391"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2047376","reference_id":"2047376","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2047376"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CSD2YBXP3ZF44E44QMIIAR5VTO35KTRB/","reference_id":"CSD2YBXP3ZF44E44QMIIAR5VTO35KTRB","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T20:58:36Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CSD2YBXP3ZF44E44QMIIAR5VTO35KTRB/"},{"reference_url":"https://bugs.python.org/issue43882","reference_id":"issue43882","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T20:58:36Z/"}],"url":"https://bugs.python.org/issue43882"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html","reference_id":"msg00022.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T20:58:36Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20220225-0009/","reference_id":"ntap-20220225-0009","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T20:58:36Z/"}],"url":"https://security.netapp.com/advisory/ntap-20220225-0009/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1663","reference_id":"RHSA-2022:1663","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1663"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1764","reference_id":"RHSA-2022:1764","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1764"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1821","reference_id":"RHSA-2022:1821","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1821"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:6457","reference_id":"RHSA-2022:6457","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:6457"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UDBDBAU6HUPZHISBOARTXZ5GKHF2VH5U/","reference_id":"UDBDBAU6HUPZHISBOARTXZ5GKHF2VH5U","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T20:58:36Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UDBDBAU6HUPZHISBOARTXZ5GKHF2VH5U/"},{"reference_url":"https://usn.ubuntu.com/5342-1/","reference_id":"USN-5342-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5342-1/"},{"reference_url":"https://usn.ubuntu.com/6891-1/","reference_id":"USN-6891-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6891-1/"},{"reference_url":"https://usn.ubuntu.com/USN-5342-2/","reference_id":"USN-USN-5342-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/USN-5342-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/994362?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3"}],"aliases":["CVE-2022-0391"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vpwj-d49q-1uh8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/36442?format=json","vulnerability_id":"VCID-w6k8-js68-87g4","summary":"Multiple vulnerabilities have been found in Python, the worst of\n    which might allow attackers to access sensitive information.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23336.json","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23336.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23336","reference_id":"","reference_type":"","scores":[{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53385","published_at":"2026-04-18T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53379","published_at":"2026-04-16T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53342","published_at":"2026-04-13T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53374","published_at":"2026-04-11T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53358","published_at":"2026-04-12T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53273","published_at":"2026-05-05T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53329","published_at":"2026-04-08T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53276","published_at":"2026-04-07T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53323","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00311","scoring_system":"epss","scoring_elements":"0.54358","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00311","scoring_system":"epss","scoring_elements":"0.54251","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00311","scoring_system":"epss","scoring_elements":"0.54311","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00311","scoring_system":"epss","scoring_elements":"0.54271","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00311","scoring_system":"epss","scoring_elements":"0.54336","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00311","scoring_system":"epss","scoring_elements":"0.54321","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00311","scoring_system":"epss","scoring_elements":"0.54301","published_at":"2026-04-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23336"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23336","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23336"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1928904","reference_id":"1928904","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1928904"},{"reference_url":"https://github.com/python/cpython/pull/24297","reference_id":"24297","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://github.com/python/cpython/pull/24297"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3EPYWWFDV22CJ5AOH5VCE72DOASZZ255/","reference_id":"3EPYWWFDV22CJ5AOH5VCE72DOASZZ255","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3EPYWWFDV22CJ5AOH5VCE72DOASZZ255/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YKKDLXL3UEZ3J426C2XTBS63AHE46SM/","reference_id":"3YKKDLXL3UEZ3J426C2XTBS63AHE46SM","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YKKDLXL3UEZ3J426C2XTBS63AHE46SM/"},{"reference_url":"http://www.openwall.com/lists/oss-security/2021/02/19/4","reference_id":"4","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"http://www.openwall.com/lists/oss-security/2021/02/19/4"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/46N6A52EGSXHJYCZWVMBJJIH4NWIV2B5/","reference_id":"46N6A52EGSXHJYCZWVMBJJIH4NWIV2B5","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/46N6A52EGSXHJYCZWVMBJJIH4NWIV2B5/"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=983090","reference_id":"983090","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=983090"},{"reference_url":"https://security.archlinux.org/ASA-202102-28","reference_id":"ASA-202102-28","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202102-28"},{"reference_url":"https://security.archlinux.org/ASA-202102-37","reference_id":"ASA-202102-37","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202102-37"},{"reference_url":"https://security.archlinux.org/AVG-1465","reference_id":"AVG-1465","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1465"},{"reference_url":"https://security.archlinux.org/AVG-1593","reference_id":"AVG-1593","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1593"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-23336","reference_id":"CVE-2021-23336","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-23336"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FONHJIOZOFD7CD35KZL6SVBUTMBPGZGA/","reference_id":"FONHJIOZOFD7CD35KZL6SVBUTMBPGZGA","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FONHJIOZOFD7CD35KZL6SVBUTMBPGZGA/"},{"reference_url":"https://security.gentoo.org/glsa/202104-04","reference_id":"GLSA-202104-04","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://security.gentoo.org/glsa/202104-04"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HCQTCSP6SCVIYNIRUJC5X7YBVUHPLSC4/","reference_id":"HCQTCSP6SCVIYNIRUJC5X7YBVUHPLSC4","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HCQTCSP6SCVIYNIRUJC5X7YBVUHPLSC4/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HZTM7KLHFCE3LWSEVO2NAFLUHMGYMCRY/","reference_id":"HZTM7KLHFCE3LWSEVO2NAFLUHMGYMCRY","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HZTM7KLHFCE3LWSEVO2NAFLUHMGYMCRY/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IHQDU7NXA7EWAE4W7VO6MURVJIULEPPR/","reference_id":"IHQDU7NXA7EWAE4W7VO6MURVJIULEPPR","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IHQDU7NXA7EWAE4W7VO6MURVJIULEPPR/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KJXCMHLY7H3FIYLE4OKDYUILU2CCRUCZ/","reference_id":"KJXCMHLY7H3FIYLE4OKDYUILU2CCRUCZ","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KJXCMHLY7H3FIYLE4OKDYUILU2CCRUCZ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LVNH6Z24IG3E67ZCQGGJ46FZB4XFLQNZ/","reference_id":"LVNH6Z24IG3E67ZCQGGJ46FZB4XFLQNZ","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LVNH6Z24IG3E67ZCQGGJ46FZB4XFLQNZ/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MNUN5SOMFL2BBKP6ZAICIIUPQKZDMGYO/","reference_id":"MNUN5SOMFL2BBKP6ZAICIIUPQKZDMGYO","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MNUN5SOMFL2BBKP6ZAICIIUPQKZDMGYO/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MP572OLHMS7MZO4KUPSCIMSZIA5IZZ62/","reference_id":"MP572OLHMS7MZO4KUPSCIMSZIA5IZZ62","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MP572OLHMS7MZO4KUPSCIMSZIA5IZZ62/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2021/04/msg00005.html","reference_id":"msg00005.html","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2021/04/msg00005.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html","reference_id":"msg00022.html","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2021/02/msg00030.html","reference_id":"msg00030.html","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2021/02/msg00030.html"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N6VXJZSZ6N64AILJX4CTMACYGQGHHD5C/","reference_id":"N6VXJZSZ6N64AILJX4CTMACYGQGHHD5C","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N6VXJZSZ6N64AILJX4CTMACYGQGHHD5C/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NJSCSN722JO2E2AGPWD4NTGVELVRPB4R/","reference_id":"NJSCSN722JO2E2AGPWD4NTGVELVRPB4R","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NJSCSN722JO2E2AGPWD4NTGVELVRPB4R/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NODWHDIFBQE5RU5PUWUVE47JOT5VCMJ2/","reference_id":"NODWHDIFBQE5RU5PUWUVE47JOT5VCMJ2","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NODWHDIFBQE5RU5PUWUVE47JOT5VCMJ2/"},{"reference_url":"https://security.netapp.com/advisory/ntap-20210326-0004/","reference_id":"ntap-20210326-0004","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://security.netapp.com/advisory/ntap-20210326-0004/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OAGSWNGZJ6HQ5ISA67SNMK3CJRKICET7/","reference_id":"OAGSWNGZJ6HQ5ISA67SNMK3CJRKICET7","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OAGSWNGZJ6HQ5ISA67SNMK3CJRKICET7/"},{"reference_url":"https://lists.apache.org/thread.html/rc005f4de9d9b0ba943ceb8ff5a21a5c6ff8a9df52632476698d99432%40%3Cannounce.apache.org%3E","reference_id":"rc005f4de9d9b0ba943ceb8ff5a21a5c6ff8a9df52632476698d99432%40%3Cannounce.apache.org%3E","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.apache.org/thread.html/rc005f4de9d9b0ba943ceb8ff5a21a5c6ff8a9df52632476698d99432%40%3Cannounce.apache.org%3E"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1633","reference_id":"RHSA-2021:1633","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1633"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3252","reference_id":"RHSA-2021:3252","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3252"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4151","reference_id":"RHSA-2021:4151","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4151"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4162","reference_id":"RHSA-2021:4162","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4162"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RSLQD5CCM75IZGAMBDGUZEATYU5YSGJ7/","reference_id":"RSLQD5CCM75IZGAMBDGUZEATYU5YSGJ7","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RSLQD5CCM75IZGAMBDGUZEATYU5YSGJ7/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SGIY6I4YS3WOXAK4SXKIEOC2G4VZKIR7/","reference_id":"SGIY6I4YS3WOXAK4SXKIEOC2G4VZKIR7","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SGIY6I4YS3WOXAK4SXKIEOC2G4VZKIR7/"},{"reference_url":"https://snyk.io/vuln/SNYK-UPSTREAM-PYTHONCPYTHON-1074933","reference_id":"SNYK-UPSTREAM-PYTHONCPYTHON-1074933","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://snyk.io/vuln/SNYK-UPSTREAM-PYTHONCPYTHON-1074933"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TFTELUMWZE3KV3JB2H5EE6VFRZFRD5MV/","reference_id":"TFTELUMWZE3KV3JB2H5EE6VFRZFRD5MV","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TFTELUMWZE3KV3JB2H5EE6VFRZFRD5MV/"},{"reference_url":"https://usn.ubuntu.com/4742-1/","reference_id":"USN-4742-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4742-1/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W2LSKBEFI5SYEY5FM6ICZVZM5WRQUCS4/","reference_id":"W2LSKBEFI5SYEY5FM6ICZVZM5WRQUCS4","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W2LSKBEFI5SYEY5FM6ICZVZM5WRQUCS4/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/995139?format=json","purl":"pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-29cz-9gkc-1bfx"},{"vulnerability":"VCID-2shb-2cvn-dyd2"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4gsg-5e6s-63g4"},{"vulnerability":"VCID-4z89-3tfk-pyge"},{"vulnerability":"VCID-7ka5-7jrn-dber"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8hug-fhhb-sbgt"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-a8mv-mr3q-vygz"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-bqp2-x383-xqfh"},{"vulnerability":"VCID-dexx-3ssz-nqfg"},{"vulnerability":"VCID-e6rs-jwvu-jycd"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-h7z2-vc14-nfhq"},{"vulnerability":"VCID-js5p-py72-2kga"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-qqh6-evfk-1fgy"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-tbuw-2msj-tqd9"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-vpwj-d49q-1uh8"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2"}],"aliases":["CVE-2021-23336"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-w6k8-js68-87g4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/66934?format=json","vulnerability_id":"VCID-znkr-fxtj-4uc7","summary":"cpython: python: Python zipfile End of Central Directory (EOCD) Locator record offset not checked","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-8291.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-8291.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-8291","reference_id":"","reference_type":"","scores":[{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.30092","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.29659","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.29722","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.29835","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.2991","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.29956","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.29977","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.29961","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.3001","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.30055","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.30049","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.30015","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.3014","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.29954","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00131","scoring_system":"epss","scoring_elements":"0.32003","published_at":"2026-05-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-8291"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8291","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8291"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1118431","reference_id":"1118431","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1118431"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1118432","reference_id":"1118432","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1118432"},{"reference_url":"https://github.com/python/cpython/issues/139700","reference_id":"139700","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-29T15:15:06Z/"}],"url":"https://github.com/python/cpython/issues/139700"},{"reference_url":"https://github.com/python/cpython/pull/139702","reference_id":"139702","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-29T15:15:06Z/"}],"url":"https://github.com/python/cpython/pull/139702"},{"reference_url":"https://github.com/python/cpython/commit/162997bb70e067668c039700141770687bc8f267","reference_id":"162997bb70e067668c039700141770687bc8f267","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-29T15:15:06Z/"}],"url":"https://github.com/python/cpython/commit/162997bb70e067668c039700141770687bc8f267"},{"reference_url":"https://github.com/python/cpython/commit/1d29afb0d6218aa8fb5e1e4a6133a4778d89bb46","reference_id":"1d29afb0d6218aa8fb5e1e4a6133a4778d89bb46","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-29T15:15:06Z/"}],"url":"https://github.com/python/cpython/commit/1d29afb0d6218aa8fb5e1e4a6133a4778d89bb46"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2402342","reference_id":"2402342","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2402342"},{"reference_url":"https://github.com/python/cpython/commit/333d4a6f4967d3ace91492a39ededbcf3faa76a6","reference_id":"333d4a6f4967d3ace91492a39ededbcf3faa76a6","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-29T15:15:06Z/"}],"url":"https://github.com/python/cpython/commit/333d4a6f4967d3ace91492a39ededbcf3faa76a6"},{"reference_url":"https://github.com/python/cpython/commit/76437ac248ad8ca44e9bf697b02b1e2241df2196","reference_id":"76437ac248ad8ca44e9bf697b02b1e2241df2196","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-29T15:15:06Z/"}],"url":"https://github.com/python/cpython/commit/76437ac248ad8ca44e9bf697b02b1e2241df2196"},{"reference_url":"https://github.com/python/cpython/commit/8392b2f0d35678407d9ce7d95655a5b77de161b4","reference_id":"8392b2f0d35678407d9ce7d95655a5b77de161b4","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-29T15:15:06Z/"}],"url":"https://github.com/python/cpython/commit/8392b2f0d35678407d9ce7d95655a5b77de161b4"},{"reference_url":"https://github.com/python/cpython/commit/bca11ae7d575d87ed93f5dd6a313be6246e3e388","reference_id":"bca11ae7d575d87ed93f5dd6a313be6246e3e388","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-29T15:15:06Z/"}],"url":"https://github.com/python/cpython/commit/bca11ae7d575d87ed93f5dd6a313be6246e3e388"},{"reference_url":"https://github.com/python/cpython/commit/d11e69d6203080e3ec450446bfed0516727b85c3","reference_id":"d11e69d6203080e3ec450446bfed0516727b85c3","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-29T15:15:06Z/"}],"url":"https://github.com/python/cpython/commit/d11e69d6203080e3ec450446bfed0516727b85c3"},{"reference_url":"https://mail.python.org/archives/list/security-announce@python.org/thread/QECOPWMTH4VPPJAXAH2BGTA4XADOP62G/","reference_id":"QECOPWMTH4VPPJAXAH2BGTA4XADOP62G","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-29T15:15:06Z/"}],"url":"https://mail.python.org/archives/list/security-announce@python.org/thread/QECOPWMTH4VPPJAXAH2BGTA4XADOP62G/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23323","reference_id":"RHSA-2025:23323","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23323"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23342","reference_id":"RHSA-2025:23342","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23342"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23530","reference_id":"RHSA-2025:23530","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23530"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23940","reference_id":"RHSA-2025:23940","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:23940"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0123","reference_id":"RHSA-2026:0123","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:0123"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0353","reference_id":"RHSA-2026:0353","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:0353"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0354","reference_id":"RHSA-2026:0354","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:0354"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0355","reference_id":"RHSA-2026:0355","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:0355"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0414","reference_id":"RHSA-2026:0414","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:0414"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0685","reference_id":"RHSA-2026:0685","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:0685"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1652","reference_id":"RHSA-2026:1652","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1652"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:1858","reference_id":"RHSA-2026:1858","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:1858"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7443","reference_id":"RHSA-2026:7443","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:7443"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7661","reference_id":"RHSA-2026:7661","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:7661"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8822","reference_id":"RHSA-2026:8822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8824","reference_id":"RHSA-2026:8824","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8824"},{"reference_url":"https://usn.ubuntu.com/7886-1/","reference_id":"USN-7886-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7886-1/"},{"reference_url":"https://usn.ubuntu.com/7886-2/","reference_id":"USN-7886-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7886-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/994362?format=json","purl":"pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1hw3-vhwb-nkcd"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-1uk5-6yqb-dyb5"},{"vulnerability":"VCID-2v5u-2z4w-ffgx"},{"vulnerability":"VCID-4afh-28ss-mudf"},{"vulnerability":"VCID-757r-fs6p-qqdd"},{"vulnerability":"VCID-7s7y-9bw5-m3ep"},{"vulnerability":"VCID-8b19-pezx-6bcd"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-8zdt-4q7m-t7ht"},{"vulnerability":"VCID-94n7-6q4s-3udv"},{"vulnerability":"VCID-9nvp-aus1-9yed"},{"vulnerability":"VCID-9sms-mhht-n3aq"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-bn83-d2qp-9bfy"},{"vulnerability":"VCID-dnv8-yrd6-c7cv"},{"vulnerability":"VCID-e6sb-bh7v-9ugg"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-fcsb-dn49-47gy"},{"vulnerability":"VCID-kn9b-2gxw-gqgx"},{"vulnerability":"VCID-mtk7-qut6-syd8"},{"vulnerability":"VCID-nqqc-u8d5-8qf6"},{"vulnerability":"VCID-q6g1-cjz3-77e4"},{"vulnerability":"VCID-qwhz-912b-8kh5"},{"vulnerability":"VCID-smck-sdx2-c7du"},{"vulnerability":"VCID-v186-7sv1-ubej"},{"vulnerability":"VCID-zh1r-7rzh-2bez"},{"vulnerability":"VCID-znkr-fxtj-4uc7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3"},{"url":"http://public2.vulnerablecode.io/api/packages/994364?format=json","purl":"pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11ed-tk56-8khn"},{"vulnerability":"VCID-1pr1-jkqa-43g6"},{"vulnerability":"VCID-8dtv-379a-wqfs"},{"vulnerability":"VCID-a2st-585f-uucu"},{"vulnerability":"VCID-emaw-jmek-9bcy"},{"vulnerability":"VCID-znkr-fxtj-4uc7"},{"vulnerability":"VCID-zxzn-25zt-ukct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4"},{"url":"http://public2.vulnerablecode.io/api/packages/1088966?format=json","purl":"pkg:deb/debian/pypy3@7.3.22%2Bdfsg-1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.22%252Bdfsg-1"}],"aliases":["CVE-2025-8291"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-znkr-fxtj-4uc7"}],"fixing_vulnerabilities":[],"risk_score":"4.5","resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.0.0%252Bdfsg-3"}